Slashdot Mirror

← Back to Stories (view on slashdot.org)

June Will Be Month of Search Engine Bugs

Posted by CmdrTaco on from the put-on-your-hard-hats dept.

De Garmo writes "A Ukranian hacker known as "MustLive" has announced plans for a Month of Search Engine Bugs project in June 2007. The plan is to shake out cross-site scripting bugs in the most popular search engines (think Google, Yahoo, MSN, Ask.com) and publish details on these flaws. From the article: "[The] purpose of this Month of Bugs is a demonstration of real state with security in search engines, which are the most popular sites in Internet. To let users of search engines and web community as a whole to understand all risks, which search engines bring to them. And also to draw attention of search engines' owners to security issues of their sites.""

4 of 60 comments (clear)

  1. A few to get started with by thornmaker · · Score: 5, Informative

    Here's a few to get off the ground with: http://sla.ckers.org/forum/read.php?3,44,page=47

  2. Re:Well by binaryspiral · · Score: 1, Informative


    Try searching google for "\\.\"

    You Windows driver programmers should know what it is about.

    http://www.google.com/search?q=%22%5C%5C.%5C%22

    Brings up nothing, but I'm interested to read what you find.

  3. Re:Well by zaajats · · Score: 4, Informative

    I'd say the response is exactly the same as with "(", meaning the special sequence is not special after all and that google simply ignores all-symbol searches. Or something.

  4. No ads bug on Google! by cyberianpan · · Score: 4, Informative

    Try this link. Google without any ads ? Ok we could configure our machines to bloack ads but I use different machines a lot, if that "backdoor" link becomes popular Google would be in trouble ! I picked up on this "bug" from here.

    Yes strictly it isn't a bug in the sense that it harms the user but it is the same as a bug that allows you use a program for free.