You are here: Home | Forum | GMail javascript vulnerability
You are currently viewing our boards as a guest which gives you limited access to view most of the discussions, articles and other free features. By joining our Virgin Media community you will have full access to all discussions, be able to view and post threads, communicate privately with other members (PM), respond to polls, upload your own images/photos, and access many other special features. Registration is fast, simple and absolutely free so please join our community today.
A recently discovered vulnerability in Google Gmail allows automatic javascript execution when using the preview function.
While Google filters javascript sent among Gmail accounts, e-mail from outside accounts such as Yahoo! are not filtered.
Normally Gmail would quote the javascript code, however if one includes a short amount of text in the subject and body of the message, then Gmail instead executes the code.
This vulnerability could be used to gather email addresses or compromise viewers Gmail account.
__________________
"We're not here for a long time, we're here for a good time" - Mike Ness (Social Distortion)
"Reach for the sky, 'cause tomorrow may never come" - Reach For The Sky (Social Distortion)
Join CF
You are here: 
