Potential Data LEAK in Getresponse (API)

by Paul Tai

Posted: 9 years ago 0 replies

INTERNET MARKETING

Hello guys,

Just wanted to warn you all that I found a potential potential security breach in how Getresponse handles API errors.

Context: this is for people who use any program that asks for your api key ; or use their api key themselves.

Note: the Api Key in a Getresponse Account is as important as your email/password

When does the risk occurs: Well, when you use an app (a membership service for example). If the membership platform tries to add a new user, or perform any other action through the API... if it works fine, then there is nothing to worry about.

But, if there is an error, the GetResponse system throws an error that COMMUNICATES YOUR API KEY inside it. Which is very, very risky.

The error message starts "Uncaught Exception 'Runtime Exception'..."

For those of you who know their code, this can be valuable. For Getresponse, I sent them an email about this; I hope they'll get around to fixing it.

Goes to show you how lousy they are when it comes to coding; I'm personally not surprised at all that they'd leave a risk like this in their code.

Take care, and stay safe

#api #data #getresponse #leak #potential

Trending Topics

1 {{ upvoteCount | shortNum }}

Looking at the average screen time and socmed usage

WF- Enzo 1 minute ago in Learn

We're seeing an ever increasing usage in social media, with the average person spending three minutes more looking at their screens daily. Now this infographic takes a look at countries ... [read more]

Reply
Share
68 {{ upvoteCount | shortNum }}

What's the Best IM-Related Skill to Learn Today That Can Help in the Future?

Marx Vergel Melencio 2 days ago in Internet Marketing

I'll start. My vote goes to: The ability to design rational thought experiments. • That's the most useful skill that I learned throughout the years for future-proofing anything. I ... [read more]

25 Replies
Share
56 {{ upvoteCount | shortNum }}

Would You Go?

lanfear63 3 days ago in Off Topic

You are old, but in a fit state of mind and body. Unfortunately you have outlived all your friends and family, wife, husband etc. Basically, you are on your own. ... [read more]

28 Replies
Share
1 {{ upvoteCount | shortNum }}

Any good link monetization services?

myfriendcute 12 hours ago in Beginners Area

Hi guys! Once again posting here to acquire the needed post threshold to post threads. I've tested countless link monetization services like linkvertise, work ink, shrink io, admaven and many ... [read more]

Reply
Share
77 {{ upvoteCount | shortNum }}

Are billboards still effective in driving customers?

Rully 1 week ago in Offline Marketing

In today's digital age, it feels like billboards might have slipped under the radar a bit. But I'm wondering if they are still good at grabing attention and delivering results. ... [read more]

35 Replies
Share

Advertise with Us