Bug in Orkut application: XSS vulnerability
Orkut is not safe these days.There is a new bug in one of the orkut applications.This can be deadly if not fixed soon.See this profile .
The vulnerable orkut application is ‘Cat of the day‘ and it can exploited using XSS (cross site scripting).
You may have come to this page by redirection from my orkut profile.
You can understand what can happen if I redirect that profile page to any fake page, many people out there on orkut may end up givin their username and passwords on that page.
Anybody with little bit knowledge of HTML,iframe can do this, so beware of such scripts and do check the URL before entering your username and password on orkut.
0 comments:
Post a Comment