JSON is not as safe as people think it is

Joe Walker is talking about the safety of JSON. He has talked about CSRF in the past, and this time he delves into the Array/JSON hack.

I saw some discussion recently about using JSON for secured data, and I’m not sure that everyone understands the risks.

I believe that JSON is unsafe for anything but public data unless you are using unpredictable URLs.“

How safe is your JSON?
view original


Leave a Reply

Your email address will not be published. Required fields are marked *