Simon Willison’s Weblog

Items tagged google, csrf, petkodpetkov

Filters: google × csrf × petkodpetkov ×


Google GMail E-mail Hijack Technique. Apparently Gmail has a CSRF vulnerability that lets malicious sites add new filters to your filter list—meaning an attacker could add a rule that forwards all messages to them without your knowledge. # 27th September 2007, 10:29 am

Types

Years

Tags