Re: Yet another hole in the web interface
"agile, devOps waterfall etc .."
Also known as quick & dirty and cheap. This is why security holes and software bugs get missed.
If software development were done properly, and time was put into coding standards, code reviews, bounds checking, vulnerability assessments & testing then these holes would not be included.
But since that takes time and costs money, then they are not done, putting the risk onto the customer with no obligation on the vendor to be responsible for their bugs and holes.