Y
Hacker News
new
|
ask
|
show
|
jobs
by
andfarm
5430 days ago
I don't think it's actually any more powerful in that regard than, say, <iframe> tags. If your application lets users perform destructive actions with a GET request, you were already vulnerable.
1 comments
pointyhat
5430 days ago
This is true, but look at the state of most applications out there.
link