[BNM] Definition of a Widdecombe?
Tristan Roddis
tristan at roddis.org
Mon Oct 1 12:20:23 BST 2007
I was about to email a client pointing out that a solution that relied on text passed in the query string (e.g. foo.php?text=Hello%20There ) was a bad idea as it would let people make your site display arbitrary text.
Last I heard, this was called a 'Widdecombe' after the fact that Ann Widdecombe's old site used this technique and so people would 'deface' it regularly to humourous effect. I think it was NTK[1] who coined the term.
However, despite lots of Googling, I can't find this word defined anywhere.
So... can anyone tell me where I can find a web page with a clear definition of a Widdecombe (in the web sense rather than the political one)? Alternatively, if this is merely a provincial, UK-centric term, and there is something more universally accepted, what is it called? (URL-injection? Query-string-to-display-vulnerability? Incipient widdification?)
Ta,
-T.
[1] http://www.ntk.net/
--
tristan at roddis.org http://www.roddis.org
_______________________________.oOo._________________________________
"Software without secrets." http://www.linux.org
More information about the BNMlist
mailing list. Powered by Wessex Networks