WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Google XXE Vulnerability

From: Mark Litchfield <mark () securatary com>
Date: Fri, 21 Feb 2014 14:14:00 -0800
Hi All,
There was an XML external entity vulnerability within Googles Public data explorer. This was submitted to Google as part of their Bug Bounty Program.
For the full write up with screen shots - http://www.securatary.com/vulnerabilities 

--
All the best

Mark Litchfield
http://www.securatary.com
Twitter - http://twitter.com/securatary





This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus 
--------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: