Security Information Vulnerability Research Security Blog

Hey, don’t touch to my Gmail filters with XSRF

October 2nd, 2007 by , Filed under: Commentary, Google, Web

The good news are that Google has fixed a serious cross-site request forgery vulnerability in Gmail.

The exploitation technique was interesting – modifying Gmail’s Forwarding settings with JavaScript.

US-CERT Vulnerability Note VU#571584 is located here.

Share
  • Share







  • Categories


Security RSS Subscribe