Another major XSS vulnerability, this time with 70 million users at risk ...
... a critical cross-site scripting vulnerability affecting Facebook.com - according to Alexa is currently ranked the 7th most used site on the web.
Malicious people can exploit this issue to execute script code in the context of Facebook or obtain sensitive information from its users, such us cleartext authentication credentials with a fake login form. It should be noted that this XSS vuln leaves millions of unsuspecting Facebook users vulnerable to malware, spyware and adware infection. [From Facebook vulnerable to XSS. Over 70 million users are at risk. | News | XSSed.com]
Leave a comment