Become a fan of Slashdot on Facebook


Forgot your password?

Submission + - Accounts Compromised

An anonymous reader writes: There is a cross-site scripting vulnerbility on the registration page of popular social networking site The hole allows cookies and sessions of logged-in users to be hijacked, compromising the account. The exploit can be triggered simply by a user clicking a maliciously-crafted link. A full explanation and sample exploit code is available here

I took a fish head to the movies and I didn't have to pay. -- Fish Heads, Saturday Night Live, 1977.