This time the startup affected is Zaarly, the service that lets you buy or sell anything with people nearby. A bug in a recent code push created a security hole that revealed phone numbers and private messages between buyers and sellers. To exploit the bug, you'd need only access Zaarly's?listings.JSON file, specifying the lat and long coordinates for the area you wanted to view. The site would spit out its listings as usual ("Used iPhone 4", "Mechanic to do a Saab engine swap", and so on) along with relevant descriptions.
Source: http://feedproxy.google.com/~r/Techcrunch/~3/EuJxkhnjrpo/
zappos indiana jones the gates sign language travel channel pcc anthony bourdain
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.