Parameter Pollution with JSON

I’ve been playing around with JSON recently, and I’ve discovered that most JSON implementations allow parameter pollution. This might be obvious to JavaScript experts, it’s not immediately obvious to most folks as JSON is just so much line noise. {“varName”:value,”varName”:value2,”varName”:value3} In the systems I’ve tried injecting, value3 is the one taken. Now if you have […]

How not to answer secret questions and answers

This one is not quite safe for work, but it’s very funny: Live Chat Help Currently experiencing network delays, one moment please…. Network connection re-established. Adam Brooke: Do you work for the IRS? Kamyar: Thank you for waiting Sir. Unfortunately we cannot access your password, however we can reset it, which enables you to access […]