It just happened that while checking a personal message on Orkut found a major security bug . Orkut has a personal message feature, wherein the messages are mailed to the user and are also stored in his/her Personal Inbox. When the user tries to retrieve his/her Personal Messages from Orkut’s User Inbox, they are retrieved from the database using a GET url. This means that message fetching details are sent over the browser address bar separated by a special character ? (question mark).
Check out the URL below. This happens to be a message from my personal inbox. ( You will have to be logged in to Orkut to test this).
Now, this message will be available for view by all of you interested, till i either delete this message or this bug gets closed [:)]
This therefore proves that if you are able to sniff any message URL from your network, you can actually read the entire message just by logging into your ORKUT account…. Strange, Isn’t it?
Hope someone from Orkut is listening.