• (nodebb)

    It's not really SQL injection if the page lets you just send whatever query you want.

  • Brian (unregistered)
    This developer was equally shocked to learn that it was even possible to view a web page's JavaScript code

    It amazes me how many professional devs don't understand that all your finely-crafted frontend code is really just a suggestion. Between the multitude of browsers (and other tools like cURL) implementing standards according to their own interpretations, extensions and malware that can alter the code before the user even sees it, different screen and window sizes, etc., what you see is rarely what they get.

    Just the other day I was talking to someone who was surprised that I could selectively remove annoying and obstructive page elements with just a few clicks. Kids these days just don't remember how the web works :eyeroll:

  • Acronym (unregistered) in reply to Brian

    So many news sites paywall "work" by just adding filter:blur on the main document... I guess if it works for 90% of visitors, it's good enough

  • Foo AKA Fooo (unregistered) in reply to Brian

    Kids these days, and kids the other day. Notice the original is from 2007.

  • Hmmmm (unregistered)

    It made me think about paywalls as well. Some are still quite masterfully crafted, and their target is likely not the small number of developers who'll enter the Developer Tools, but likely the X% using plugins to automatically de-paywall.

  • gman003 (unregistered) in reply to Acronym

    It's amazing how many can be bypassed simply by using Firefox's reader view (or equivalent in other browsers that have them, I know Vivaldi does). Who needs an extension to bypass paywalls when two buttons the browser came with do the job?

  • sj (unregistered)

    Switch statement includes case handling for both “confirmed” and “conformed”.

Leave a comment on “Classic WTF: One-and-a-Half-Tiered Application Design”

Log In or post as a guest

Replying to comment #699574:

Log Out

« Return to Article