Carmelo Lisciotto • April 2, 2007 4:04 PM The System Administrators should be the ones concerned. Carmelo Lisciotto Shawn Lauriat • April 2, 2007 5:13 PM That doesn’t look new, that just looks like a specific usage of the data returned by a XSRF vulnerability, in order to more conveniently capture data the application already exposed in ways it shouldn’t. In other words, it doesn’t really look lik