Skip to main content

Sensitive information sent via URL parameters


The system sends sensitive information via URL parameters using the GET method.

These parameters are:

  • stored in clear text in the browser history.

  • sent to external sites via the referrer HTTP header.

  • sent to external sites via the search bar if the browser interprets the URL as a query.

  • visible to scripts running on the browser that may belong to third-parties.