Showing posts with label Blogger.com vulnerability. Show all posts
Showing posts with label Blogger.com vulnerability. Show all posts

Saturday, 12 January 2013

Blogger.com and the mixed scripting vulnerability

Blogger.com suffers from a mixed scripting/content vulnerability, this domain references multiple scripts and other content types from a non-https enabled channel.

Here's the report:

# Exploit Title: Multiple Mixed Scripting/Content Vulnerabilities in Blogger.com
# Google Dork:site:blogger.com
# Date: 09/1/12
# Exploit Author: k3170makan
# Vendor Homepage: https://www.blogger. com
# Software Link: https://www.blogger.com
# Version: current
# Tested on: Ubuntu 10.04
# site: ...