Dear Django Group Members, I hope I'm not breaking any rules, because I'd like to share with you a brief article I wrote on the security of applications, including those written in Django.
Django does a great job in protecting developers and the users of your applications from many security vulnerabilities such as XSS, SQL Injection, CSRF, and many others. However, there is at least one area that you need to address carefully. This relates to the vulnerability known as Broken Access Control. More information here: https://reynardsec.com/en/the-unnoticed-plague/ Cheers, The ReynardSec Team -- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/632331b9-3b09-418b-b2b6-5727f41cb78cn%40googlegroups.com.
