ESPN Fantasy Football Flaw
ESPN fantasy football players beware: The system is rife with security flaws. According to security experts, the vulnerabilities exist in the URL the site uses as a final confirmation when making roster decisions. The site is not authenticating the requests correctly, so by essentially editing the URL, a player can make changes to another player's team.
ESPN fantasy football players beware: The system is rife with security flaws. According to security experts, the vulnerabilities exist in the URL the site uses as a final confirmation when making roster decisions. The site is not authenticating the requests correctly, so by essentially editing the URL, a player can make changes to another player's team.
Of course this seems harmless enough. But the truth is most fantasy football leagues have money on the line. In fact most everyone I know who plays fantasy football does so with a wager. This flaw would enable, with little energy exerted, someone to manipulate a fellow player's team by dropping or adding players, or altering lineups.
For those not familiar with fantasy football, it's a game where by users build virtual teams by drafting real NFL football players. Points are assessed by the player's real live game statistics. It's become an increasingly popular game for football fans in particular, though there are fantasy games for the other major sports as well.