• Google Cross-Site Scripting Flaw Fixed

    Google has fixed a cross-site scripting vulnerability on its Web site, according to security firm Watchfire. The flaw allowed an attacker to impersonate legitimate Google services in order to launch a phishing attack. The search engine applauded the firm for withholding disclosure until it could fix the problem.

    The XSS flaw existed in how Google redirected users in its error pages. An attacker could use UTF-7 characters to take advantage of the vulnerability and insert malicious JavaScript into the URL, the firm said. According to Watchfire, Google fixed the problem on December 1, just two weeks after it had been alerted to the problem.

    TAGS
    7 Comments

    7 Responses to Google Cross-Site Scripting Flaw Fixed

    Got News? Contact Us

    Recent Headlines

    Wondershare adds Topaz Labs' AI video tools to UniConverter 17

    Foxit PDF editor gains new collaboration safeguards and AI features

    EaseUS adds fragmented file recovery tech to Data Recovery Wizard

    NordProtect rolls out expanded monitoring features for identity theft detection

    AI as a target, web-based attacks and deepfakes -- cybersecurity predictions for 2026

    Agent vs agent, reliable interfaces and value for money -- artificial intelligence predictions for 2026

    Microsoft brings Ask Copilot and Agents to the Windows 11 taskbar for business users

    Most Commented Stories

    1. Mozilla has a new CEO and plans to make Firefox an AI browser

      3 Comments

    2. MiniTool adds a duplicate cleaner and refreshed interface to Partition Wizard 13.5

      1 Comment

    3. Microsoft releases emergency patch for Windows 10 to fix Message Queuing problems

      1 Comment

    4. Motorola’s $299.99 moto g power 2026 adds water resistance and a larger display

      1 Comment

    5. Revolut Mobile lands in the UK with impressive roaming data

      1 Comment

    6. The switch from Google Assistant to Gemini will be slower than expected

      1 Comment

    7. Wondershare adds Topaz Labs' AI video tools to UniConverter 17

      0 Comments

    8. SoundCloud warns of data breach with ‘limited data’ of a fifth of its users

      0 Comments

    Why Trust Us

    At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

    betanews logo

    We don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

    x logo facebook logo linkedin logo rss feed logo

    NEWS

    AI
    Technology
    Software
    Hardware
    About Us

    UNITED KINGDOM

    CANADA

    © 1998-2025 BetaNews, Inc. All Rights Reserved.

    Privacy Policy | Terms of Service | Cookie Policy | Contact Us | Sitemap