Comments on: HTTP Methods: GET vs POST http://insecureweb.com/web-security/http-methods-get-vs-post/ Insight into web application security Wed, 16 Dec 2009 01:02:49 -0800 http://wordpress.org/?v=2.8.5 hourly 1 By: Bala Sakthis http://insecureweb.com/web-security/http-methods-get-vs-post/comment-page-1/#comment-57 Bala Sakthis Mon, 13 Jul 2009 01:24:45 +0000 http://www.insecureweb.com/?p=22#comment-57 Hi Bryan, I went through your article. A crisp explanation with the header data. "In C# there exists an object called Request which provides all of the details of a given request....." After reading the above para, I wanted to share one of the whitepapers, I went through. Please visit http://lavakumar.com/ and read the article on "Split and Join". Also, please google and learn about HTTP Parameter pollution. This vulnerability has its base on what you had warned. Thanks! Bala Hi Bryan,
I went through your article. A crisp explanation with the header data.

“In C# there exists an object called Request which provides all of the details of a given request…..”

After reading the above para, I wanted to share one of the whitepapers, I went through. Please visit http://lavakumar.com/ and read the article on “Split and Join”. Also, please google and learn about HTTP Parameter pollution. This vulnerability has its base on what you had warned.

Thanks!
Bala

]]> By: lion http://insecureweb.com/web-security/http-methods-get-vs-post/comment-page-1/#comment-15 lion Tue, 24 Feb 2009 12:09:07 +0000 http://www.insecureweb.com/?p=22#comment-15 Can reference http://www.hacker3.com/post/CSRFe694bbe587bbe58e9fe79086e8a7a3e69e90e4ba8c.aspx Can reference
http://www.hacker3.com/post/CSRFe694bbe587bbe58e9fe79086e8a7a3e69e90e4ba8c.aspx

]]>