Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Submission Google's OpenSocial induces XSS exploit in Ning->

Roydd McWilson writes: Harold the Rebel has discovered a major cross-site scripting vulnerability in Google's OpenSocial platform, and demonstrated it with an exploit of a site he created on the social network Ning. Read about the exploit on Harold's blog. Does this spell an early demise for OpenSocial, or is it only a temporary hiccup? Harold brings up interesting questions about the very nature of Web 2.0 itself.
Link to Original Source

"Confound these ancestors.... They've stolen our best ideas!" - Ben Jonson