mailing list archives
Re: Google Buzz and blind CSRF attacks
From: Kristian Erik Hermansen <kristian.hermansen () gmail com>
Date: Fri, 12 Feb 2010 09:48:44 -0800
On Fri, Feb 12, 2010 at 7:08 AM, Cody Robertson <cody () hawkhost com> wrote:
Doesn't work for me
It has been verified against multiple GMail users. You can try the
direct link as well, but the issue is more effective within the "Buzz"
interface. It doesn't look like you tested from a gmail account
Kristian Erik Hermansen
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/