This is a fine example of developers being lazy and how not to implement "security".
National Express are one of the biggest public transport companies in the UK with a huge fleet of coaches and trains.
This vulnerability discloses customers information to a potential attacker such as the passengers names, destination, last 4 digits of the card, price the customer paid for the tickets and of course the ticket itself.
more here...........http://www.ifc0nfig.com/national-express-ticket-disclosure/
National Express are one of the biggest public transport companies in the UK with a huge fleet of coaches and trains.
This vulnerability discloses customers information to a potential attacker such as the passengers names, destination, last 4 digits of the card, price the customer paid for the tickets and of course the ticket itself.
more here...........http://www.ifc0nfig.com/national-express-ticket-disclosure/