Prevent "hijacking" install sessions by tying it to specific browser or session #108
Right now there is no validation that the site details, are not filled by the person that actually started the install.
While there is no obvious exploit vector here, people that notice that have a WTF moment which do not add to the credibility of the software of being security focused.
The text was updated successfully, but these errors were encountered:
… This value is used to verify that the install session is not hijacked. #108