|
|
|
|
|
|
by moloch
3523 days ago
|
|
|
This is bad but not horrible, especially in the example given leaking the reset token to Cloudfront. The application is loading JavaScript from the Cloudfront origin, so that origin by definition could already read the tokens by modifying the JavaScript (assuming no SRI). The request is sent over SSL/TLS so the token cannot be viewed by a MITM, and referers aren't sent across HTTP<->HTTPS transitions. Again this is far from ideal, but also not readily exploitable by attackers that couldn't already access the data. |
|
|