> Most developers don't ever expect people to do this so they're often a bit les... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

giancarlostoro on Aug 10, 2022 | parent | context | favorite | on: Ask HN: What are the best tools for web scraping i...

> Most developers don't ever expect people to do this so they're often a bit less secure too.

Yikes.

iforgotpassword on Aug 10, 2022 [–]

I faintly remember a story from a couple years ago where some pizza ordering app simply changed some get parameter to paid=yes after the user completed the payment process. Guess what happened when the guy who poked around the app set that parameter to yes before doing the payment step....

getcrunk on Aug 11, 2022 | [–]

He went to jail?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact