Sears.com Squelches Web Programming Blunder

Slashdot

+ - Sears.com Squelches Web Programming Blunder-> 0

Submitted by blitzkrieg3 on Thursday August 20, 2009 @11:19PM

blitzkrieg3 writes "Earlier today someone made public a trivial exploit on the Sears.com website. Sears was storing page paramaters from the client editable url into the catagory of the page, leading to some pretty funny results. Once the catagories were loaded into the cache, every subsequent hit would pull up the same user submitted catagories, even without any page paramaters. TMZ and Fox News have their own reports. Reddit has since been forced to take the post off of their front page by their parent Conde Nast, but the page can still be accessed via permalink."
Link to Original Source

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Sears.com Squelches Web Programming Blunder

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Can't open /usr/fortunes. Lid stuck on cookie jar.

Sears.com Squelches Web Programming Blunder More Login

Sears.com Squelches Web Programming Blunder