Is Web 2.0 Inherently Insecure?
Many Web 2.0 apps pass data as a JavaScript object or as code that can be evaluated in JavaScript. This approach leaves users vulnerable, in particular, to cross-site request forgery attacks.
http://networkcomputing.com/showArticle.jhtml?articleId=199000154
Is Web 2.0 Inherently Insecure?
Many Web 2.0 apps pass data as a JavaScript object or as code that can be evaluated in JavaScript. This approach leaves users vulnerable, in particular, to cross-site request forgery attacks.