Another XSS vulnerability

This time the vulnerability comes through Google’s hands, yes, The Google Appliance has a vulnerability that allows to steal cookies, sessions, etc,  the appliance is affected by everything you can do running a browser script, which is not very good for Google and for many organizations that use this device, for example the British MI-5, MI-6, and so on.

This vulnerability was discovered by “Mustlive” but if you are interested in this kind of Google Vulnerabilities the following links will help:

 Google Systems blog

ha.ckers.org

 The Metasploit Project

1 Comment(s)

  1. [...] Another XSS vulnerability « The Gold Bug Security Blog The British Secret Services uses Google Search appliances? I did not know that. (tags: Google search) [...]


Comments RSS TrackBack Identifier URI

Leave a comment