sábado, 28 de dezembro de 2013

XSS Google Founded

Hey,

Users are permitted to place arbitrary JavaScript, Flash, Java, etc, in their .blogspot.com domains; this is by design. These domains are fully isolated from other Google content, and therefore, the risk in visiting them is no different to navigating to any other website on the Internet.

Note that there are no authentication cookies or other sensitive information in these domains; blog management is implemented on blogger.com, instead.

More information can be found here:
http://www.google.com/about/appsecurity/reward-program/#notavuln

Regards,
Kevin

Então pessoal, não estava procurando um XSS no Blogger, mas por alguns micro segundos fiquei feliz em pensar que podia contribuir...

How many things we can learn with each one of us... every person teach us something, in small things... open your eyes, dont be rush, change your mind, dont change the world today, change your vision of the world...Read more, but talk more with the people.. In every child you could see a hope...


O pior que eu concordo! 




Postar um comentário