Simon Willison’s Weblog

27th September 2007 - Link Blog

Google GMail E-mail Hijack Technique. Apparently Gmail has a CSRF vulnerability that lets malicious sites add new filters to your filter list—meaning an attacker could add a rule that forwards all messages to them without your knowledge.

Posted 27th September 2007 at 10:29 am

Recent articles

Mr. Chatterbox is a (weak) Victorian-era ethically trained model you can run on your own computer - 30th March 2026
Vibe coding SwiftUI apps is a lot of fun - 27th March 2026
Experimenting with Starlette 1.0 with Claude skills - 22nd March 2026

This is a link post by Simon Willison, posted on 27th September 2007.

csrf 53 gmail 23 google 399 security 587 vulnerability 5

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe