Skip to main content

Sensitive information sent via URL parameters

Description#

The system sends sensitive information via URL parameters using the GET method.

These parameters are:

  • stored in clear text in the browser history.

  • sent to external sites via the referrer HTTP header.

  • sent to external sites via the search bar if the browser interprets the URL as a query.

  • visible to scripts running on the browser that may belong to third-parties.

Requirements#