Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Top sites vulnerable to hackers

Top sites vulnerable to hackers

by baqad on November 24th, 2001 Big internet names are vulnerable to a hacker technique despite more than 18 months' worth of warnings, claims a security expert.


Security watcher Dave deVitry, of Infigon Technologies, released a shortlist of high-profile sites he claims are still vulnerable to Cross Site Scripting including Citibank, Google, CNet, Oracle, MSNBC and eBay, complete with samples. And yes, some of them do show signs of the vulnerability.


More than 18 months since the Computer Emergency Response Team (CERT) issued an alert on Cross Site Scripting, a user to run their own scripts on vulnerable sites, as well as steal cookies, perform actions on behalf of another user or modify content on a site.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »