← Back to context Comment by f17428d27584 15 hours ago Enumeration vulns are very serious, it’s just luck that this one appeared to be low risk. 4 comments f17428d27584 Reply swader999 15 hours ago A competitor of the restaurant could see everything that was ordered that night. Pretty serious imo. zmgsabst 15 hours ago Or profile the customers of every business, by changing both IDs. alex43578 15 hours ago But that’s my point: not all risks are the same. A cache issue that serves you someone else’s crossword puzzle is an inconvenience, but a cache issue that serves you someone’s credit report is way worse. Eisenstein 14 hours ago But what does it say about the payment app if it doesn't bother to secure the low hanging fruit?
swader999 15 hours ago A competitor of the restaurant could see everything that was ordered that night. Pretty serious imo. zmgsabst 15 hours ago Or profile the customers of every business, by changing both IDs.
alex43578 15 hours ago But that’s my point: not all risks are the same. A cache issue that serves you someone else’s crossword puzzle is an inconvenience, but a cache issue that serves you someone’s credit report is way worse. Eisenstein 14 hours ago But what does it say about the payment app if it doesn't bother to secure the low hanging fruit?
Eisenstein 14 hours ago But what does it say about the payment app if it doesn't bother to secure the low hanging fruit?
A competitor of the restaurant could see everything that was ordered that night. Pretty serious imo.
Or profile the customers of every business, by changing both IDs.
But that’s my point: not all risks are the same. A cache issue that serves you someone else’s crossword puzzle is an inconvenience, but a cache issue that serves you someone’s credit report is way worse.
But what does it say about the payment app if it doesn't bother to secure the low hanging fruit?