Anatomy of a Sitecore bug (and some things that all of us developers must learn)

Recently Sitecore published the following critical report including a fix.   Sitecore has rightly marked it as critical as the result of the bug actually is that all contents of the website can be downloaded by simply specifying a custom crafted url. I will not post the format of the url but will only describe why some of the checks that where done in... [More]