1 min readMar 15, 2018
Thanks Ak1T4. :)
The mitigation for this vulnerability is to have some strong encryption rather than weak base64 encoding. Send a encrypted token bind it with the particular user and that’s it.
Sitemap
Written by Avinash Jain (@logicbomb)
Security Engineer @Microsoft | DevSecOps | Speaker | Breaking stuff to learn | Featured in Forbes, BBC| Acknowledged by Google, NASA, Yahoo, UN etc