We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Ordered from Serenata Flowers? Your data is open to harvest...
daburgers
Posts: 2 Newbie
Just a brief first post from me - if you've taken up the great offer for Valentine's Day from Serenata Flowers be wary that your, and your recipient's, data is completely open to harvest (the fact that you have to login doesn't change the severity of this issue)
I can't post a URL proof of concept as a new user, but you simply change the order number on the end of the standard URL used to view an order (i.e. the eid= part). A serious breach of the Data Protection Act which really should not happen in this day.
So, if you've taken up the offer, and you start to get unwanted spam, or phone calls etc, this could be the source.
I can't post a URL proof of concept as a new user, but you simply change the order number on the end of the standard URL used to view an order (i.e. the eid= part). A serious breach of the Data Protection Act which really should not happen in this day.
So, if you've taken up the offer, and you start to get unwanted spam, or phone calls etc, this could be the source.
0
Comments
-
has this been corrected?0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351.7K Banking & Borrowing
- 253.4K Reduce Debt & Boost Income
- 454K Spending & Discounts
- 244.7K Work, Benefits & Business
- 600.1K Mortgages, Homes & Bills
- 177.3K Life & Family
- 258.4K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.2K Discuss & Feedback
- 37.6K Read-Only Boards