This time the startup affected is Zaarly, the service that lets you buy or sell anything with people nearby. A bug in a recent code push created a security hole that revealed phone numbers and private messages between buyers and sellers. To exploit the bug, you'd need only access Zaarly's�listings.JSON file, specifying the lat and long coordinates for the area you wanted to view. The site would spit out its listings as usual ("Used iPhone 4", "Mechanic to do a Saab engine swap", and so on) along with relevant descriptions.
Source: http://feedproxy.google.com/~r/Techcrunch/~3/EuJxkhnjrpo/
Mía Maestro Michael Michele Michelle Behennah Michelle Branch Michelle Malkin
Tidak ada komentar:
Posting Komentar