Links to shared documents exposed.
Dropbox claims it has patched a vulnerability that could disclose links to users' shared documents through a commonly used website feature, and says it is not aware of the security hole having been exploited.On the company's blog, Dropbox vice president of engineering Aditya Agarwal explained that shared links to documents can be inadvertently disclosed through referer headers, a feature used by websites to track where visitors have navigated from.
This means that those with access to referer header information can see links to shared documents on Dropbox, if these have links to websites and users click on them.
Full Article
See also Crimeware Helps File Fraudulent Tax Returns