|
|
|
|
|
|
by benburleson
4819 days ago
|
|
|
Yeah, it's not a great use-case because it requires other flaws where the cookie value is used. This is just a specific example of the general problem that any variable in the browser can be changed by the user before being sent to the server. |
|
|