URL and security

Giganews Newsgroups
Subject: URL and security
Posted by:  mun (vongm…@gmail.com)
Date: 10 Apr 2007

on some sites, i see the this type of url

example.com/script.php?continue=/path/to/file

why do they expose the next link on the url? will that allow the
visitors to modify the continue querystring and break the link? for
example, instead of example.com/script.php?continue=/second/page,
visitors may modify it to
example.com/script.php?continue=/page/not/exists.

Replies