FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » FUDforum Development » Bug Reports » Security hole with URL cut and pastes?
Show: Today's Messages :: Unread Messages :: Show Polls :: Message Navigator
| Subscribe to topic | Bookmark topic 
Switch to threaded view of this topic Create a new topic Submit Reply
Security hole with URL cut and pastes? [message #18349] Tue, 18 May 2004 14:50 Go to next message
BugLaden is currently offline  BugLaden   United States
Messages: 208
Registered: February 2002
Location: New Windsor, Md.
Karma: 0
Senior Member
add to buddy list
ignore all messages by this user

We've noticed on my forum the possibility of a security hole.

If you paste the URL of a page into an email, another forum, etc with the &S= as part of the URL, is it possible, anyone can link in under that user's login session?


-=BugLaden
CCG Workshop, LLC
Play Hobby and Strategy Games Online!

[Updated on: Tue, 18 May 2004 14:50]

Report message to a moderator

Re: Security hole with URL cut and pastes? [message #18350 is a reply to message #18349] Tue, 18 May 2004 14:59 Go to previous message
Ilia is currently offline  Ilia   Canada
Messages: 13241
Registered: January 2002
Karma: 0
Senior Member
Administrator
Core Developer
add to buddy list
ignore all messages by this user
No, just because you give someone a session id does not mean that they can use it.

FUDforum Core Developer
Quick Reply
Formatting Tools:   
  Switch to threaded view of this topic Create a new topic
Previous Topic: Last registered user screwed up
Next Topic: "mark all unread forum messages read" - error
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Sun Oct 22 13:35:04 EDT 2017

Total time taken to generate the page: 0.00797 seconds