12/21/2005

Cross Site Scripting Discovered in Google

Filed under: — By Aviran Mordo @ 11:15 am

Yair Amit posted a message early this morning to The Web Security Mailing List outlining a Cross Site Scripting flaw in Google that allows an attacker to carry out Phishing Attacks.

Update
Google has fixed the security flaw that had opened the door to phishing scams, account hijacks and other attacks, security researchers said Wednesday.

Source: Slashdot

 

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress