More like this


UK citizens' portal exposes edit kit interface

HTML undergarments of aired in public


Coding errors left the edit kit interface on the UK government's citizens' portal visible last week.

Hmmm. Excuse me but your HTML is showing

Although the interface of was visible, a faux pas akin to exposing the site's undergarments to public view, more serious mischief wasn't possible. The interface didn't have write permissions to the website, security experts at UK-based penetration testing consultancy SecureTest confirmed.

Reg reader Phil stumbled on the page while passing time waiting for a Java update and looking at which UK health and government sites disallowed indexing by Google. "I'm not sure that's something I should be able to see. I didn't play with it much after seeing that, and wouldn't have known what to do if I had, but when a page says something like that, I can't help but wonder if someone who actually knows what they're doing might be able to cause some mischief," he explained.

As it happens the slip-up was minor - since it wasn't possible to post anything from the interface - but nonetheless surprising. The webmasters of have since tucked in their undies pulled the page from public view. ®

Sponsored: Key reasons to use software-defined Storage and how to get started