ACTION-432

Is there an obvious way to use CORS that introduces a risk of confused deputy attacks or other security risks?

State:: closed
Person:: Charles McCathieNevile
Due on:: 2009-11-09
Created on:: 2009-11-02
Related emails:: No related emails

Related notes:

2009-11-02 22:43:57: http://www.w3.org/2008/webapps/track/issues/108 [Michael(tm) Smith]

Display change log.

Charles McCathieNevile <chaals@opera.com>, Arthur Barstow <art.barstow@nokia.com>, Chairs, Doug Schepers <schepers@w3.org>, Staff Contact
Tracker, originally developed by Dean Jackson, is developed and maintained by the Systems Team <w3t-sys@w3.org>.
$Id: index.php,v 1.231 2009/11/16 15:00:54 dom Exp $