When the query string includes sensitive information such as session identifiers, then attackers can use this facts to start more assaults. since the access token in sent in GET requests, this vulnerability could lead https://www.ralantech.com/mysql-database-health-check-consulting-service/