Security Flaw With PACER Sites Solved

Law360, New York (August 11, 2017, 8:03 PM EDT) -- The Administrative Office of the U.S. Courts fixed a vulnerability with its online PACER/ECF system that could have granted unlimited access to website owners whose visitors were logged in to PACER, the Free Law Project said Wednesday.

Six months after first reporting the vulnerability to the AO, the FLP said that the issue has been fixed and was a cross-site request forgery — the eighth-most critical web application security risk in 2017, according to the Open Web Application Security Project.

Timeline For PACER

Security Flaw Fix...
To view the full article, register now.