• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Prevent HTTP verb tampering

#7
(07-06-2017, 10:45 PM)june123 Wrote: But the PUT method can be used to introduce malicious codes to the server.

Similarly the DELETE method can be used to remove important files of the application, thus causing denial of service, removal of configuration files etc.

No. PUT and DELETE are meant for you to implement when you want to create or delete resources.

They don't magically do something without your permission.
Reply


Messages In This Thread
Prevent HTTP verb tampering - by june123 - 07-06-2017, 01:41 AM
RE: Prevent HTTP verb tampering - by skunkbad - 07-06-2017, 07:43 AM
RE: Prevent HTTP verb tampering - by june123 - 07-06-2017, 07:16 PM
RE: Prevent HTTP verb tampering - by skunkbad - 07-06-2017, 08:38 PM
RE: Prevent HTTP verb tampering - by june123 - 07-06-2017, 10:45 PM
RE: Prevent HTTP verb tampering - by skunkbad - 07-07-2017, 12:35 AM
RE: Prevent HTTP verb tampering - by Narf - 07-07-2017, 02:00 AM
RE: Prevent HTTP verb tampering - by june123 - 07-07-2017, 03:11 AM

Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.