Researchers have built a prototype tool that tackles one of the most pervasive yet least-addressed areas of Web application security -- detecting business logic flaws in the applications. Rafal Los ...