How Not to Write an API

in code on (#3FD)
While creating an Android App for Criticker, a movie review and recommendation website, this author found some interesting security holes in their API.

Who knew that a LookupPassword function that returned any user's password in plain-text would be a bad idea?

Re: Deeper problem (Score: 2, Funny)

by on 2014-03-10 20:56 (#DD)

Naw, even if you get it wrong it lets you continue to register.
(signed: Doesn't double check his answers....)
Post Comment
The purple hand is what color?