Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×
Google

Submission + - Another Google cross-domain vulnerability fixed (theregister.co.uk)

mr_mischief writes: The Register reports that a vulnerability allowed exploiting Google Docs to access information stored in users' GMail accounts. The bug is said to be fixed now. It was possible using proof-of-concept code to grab Gmail contact lists as witnessed by the reporters. The developer of the PoC says he could just as easily grab actual email messages or other user data on Google's servers until the hole was closed.
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Another Google cross-domain vulnerability fixed

Comments Filter:

If all else fails, lower your standards.

Working...