Error!
Success!

Submit a new Story Link

You've got a new story for us? Awesome! Just fill in the details below and fire away...

MVC Routing Security Hole

Edit your Story Link

Not quite right the first time? No problem, send us your changes...

Ban this user: Options

Please provide a reason for deleting this story
0
kicks

views: 0
comments: 0

MVC Routing Security Hole  (Unpublished)

Stephen Walther's latest MVC tip introduced me to the MVC framework's ability to pass server variables into actions as parameters. Unfortunately using this feature is a very bad idea and could jeopardize the security of your application. Take a look at a code sample you might find surprising.
more less
Kicked By:
Drop Kicked By:
0
none
views: 0  
comments: 0  
by (unknown)