18 Kicks

MVC Routing Security Hole(squaredroot.com)

submitted by TroyMGTroyMG(2670) 3 years, 7 months ago

Stephen Walther's latest MVC tip introduced me to the MVC framework's ability to pass server variables into actions as parameters. Unfortunately using this feature is a very bad idea and could jeopardize the security of your application. Take a look at a code sample you might find surprising.

add a comment |category: |Views: 238

tags: another

new Add a live kick counter to your blog >> liveImage

You can even customize the image by choosing your own colors, and then clicking the button below to update the preview and the html code:

  • "Kick It" text
  • "Kick It" background
  • kick count text
  • kick count background
  • border

Simply copy and paste this HTML into your blog post.


Users who kicked this story:
ashithmrashithmr(90) - blisteringlunaticblisteringlunatic(0) - mdoppmdopp(856) - bokiboki(55)
More who kicked this story...
Comments:

No comments so far

information Login or create an account to comment on this story
Submit a Story
View upcoming stories
How else can I help?
Add our feeds to your site

Most Active Users

What's this?