Web 2.0 vulnerability found!
April 2, 2007
This could potentially affect apps such as Gmail so is concerning. I’ve always had my doubts about the security of data transferred in AJAX apps but not having the technical resource to look into it in detail have never investigated fully. My concerns have prevented us using a lot of AJAX features in our site and where we do it is all secure as no sensitive data is involved. Imagine the furore if this proves to be a major problem, just how many Web 2.0 start-ups could fold as they are forced to re-engineer their apps to secure themselves. I’m sure it won’t be that bad, but it is something that needs taking seriously!