Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cross Site Scripting Discovered in Google

Posted by CmdrTaco on from the hate-when-that-happens dept.

Security Test writes "Yair Amit posted a message early this morning to The Web Security Mailing List outlining a Cross Site Scripting flaw in Google that allows an attacker to carry out Phishing Attacks."

2 of 158 comments (clear)

  1. Re:but this was resolved three weeks ago. by op12 · · Score: 0, Redundant

    More like 11 months ago! :)

  2. Re:but this was resolved three weeks ago. by minus_273 · · Score: 0, Redundant

    " Google solved the aforementioned issues at 01/12/2005, by using=20
    character encoding enforcement"

    actaully, it looks like it was resolved almost ayear ago. Why is this even news? are we going to post old MS bug reports now?

    --
    The war with islam is a war on the beast
    The war on terror is a war for peace