From the article: " Not a great month for Google security. In the past 3 days, 34 interesting disclosures have been published:" From http://hackademix.net/2007/09/24/googhole-xss-pwning-gmail-picasa-and-almost-200k-customers/ |
You mean... 4, right?
It seems to me that Google has fixed the Poll vulnerabilities, if there were any, and to my knowledge the Urchin one has been out for about a week or two, so it doesn't count as "in the past 3 days".
It's faster to fix in house problems, but it would take a while for the clients. Then again, "security is useless." |
:-), sorry for the mistake, it should have been 4 , not 34 Thanks Haochi |
I'm really wondering how works the Picasa flaw... |
Another flaw in Google Docs announced, using Flash... |
Some more Indian Sites Rediffmail.com has xss problems.
http://qna.rediff.com/Main.php?do=search&txtsearch=<script>alert(document.cookie);</script> |
Suresh Take this to xssed.com
You'll be amazed to see the number of XSS entires there. |