Google Blogoscoped

Forum

New XSS vulnerability on Google

Juha-Matti Laurio [PersonRank 10]

Friday, November 2, 2007
2 years ago633 views

Details at
xssed.com/mirror/24521/

This You Got Stallown3d! picture was seen earlier too...

James Xuan [PersonRank 10]

2 years ago #

Huh?

Colin Colehour [PersonRank 10]

2 years ago #

I don't understand what your talking about either.

Juha-Matti Laurio [PersonRank 10]

2 years ago #

The comment means the following:

The picture 'You Got Stallown3d' is very familiar in XSS reports, it is being used to demonstrate downloading pictures from 3rd party Web site.

I hope this will help.

Philipp Lenssen [PersonRank 10]

2 years ago #

Last time Tony checked, around a week ago or so, Google still didn't have the old XSS exploit fixed either – and they were alerted to it. I'm talking about this one: blogoscoped.com/archive/2007-0 ...

Juha-Matti Laurio [PersonRank 10]

2 years ago #

This specific issue (#24521 at Xssed.com) is marked as Fixed.
Sorry for including this information to the post.

Additionally, there is another issue too, link:
xssed.com/mirror/24483/

At time of writing, this issue is fixed as well (and was fixed before the weekend too).

Good work, Google security team!

This thread is locked as it's old... but you can create a new thread in the forum. 

Forum home

>> More posts

Advertisement

 
Blog  |  Forum     more >> Archive | Feed | Google's blogs | About
Advertisement
Books about Google on Ebay
Want to make money with your website? AllPosters.com Affiliates Program Advertise here?

 

This site unofficially covers Google™ and more with some rights reserved. You can subscribe to the feed, email your tips and join our forum!