| http://www.w3.org/ns/prov#value | - The first vulnerability resides in the third HTTP request, a POST request towards the /oauth/authorize resource, which contains several parameters, including the Twitter username and password in the clear, making the authentication process vulnerable to eavesdropping attacks:
|
