the audience parameter is read from the request which is insecure
Assignee: nobody → kumar.mcmillan
Priority: -- → P1
Target Milestone: --- → 2013-07-25
Status: NEW → RESOLVED
Last Resolved: 5 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.