Restrict Unauthenticated PURGE requests
At the moment Hosting is using Varnish cache which developers do not have access so they can't configure it, this leaves a small window for people to continuously Purge the page and increase the developer's usage
7
votes
Luis Benjamin Rodriguez Farrera
shared this idea
-
Rafael Rodrigues commented
More details about this issue: https://secapps.com/vulndb/unauthenticated-cache-purge