Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Google

Submission + - Another Google cross-domain vulnerability fixed->

mr_mischief writes: The Register reports that a vulnerability allowed exploiting Google Docs to access information stored in users' GMail accounts. The bug is said to be fixed now. It was possible using proof-of-concept code to grab Gmail contact lists as witnessed by the reporters. The developer of the PoC says he could just as easily grab actual email messages or other user data on Google's servers until the hole was closed.
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Another Google cross-domain vulnerability fixed

Comments Filter:

[Crash programs] fail because they are based on the theory that, with nine women pregnant, you can get a baby a month. -- Wernher von Braun

Working...