[OWASP-Bangalore] Shaadi.com Hack : What You/Your friends should be doing.

Raxit Sheth raxitsheth2000 at gmail.com
Thu Jan 24 06:05:38 UTC 2013


Hey


Recently i was able to get access to many profiles of shaadi, more
details are here.

https://twitter.com/raxit/status/294315616297435136
https://www.facebook.com/raxitsheth2000/posts/261609590635647


Shaadi.com has already fix this (after that only m disclosing!) As
this clearly indicates it is very easy to get other people profile,
modify, send interest to other profile, accept/reject interest, Modify
profile, see contact number etc,   If you/your friends are on
shaadi.com   you/they want to cross verify each details once again.

You may want to share with your friends with good intention and ask
them to double check with their profile/interest and other things
(more detail is in the link above)


Raxit Sheth


More information about the OWASP-Bangalore mailing list