How to steal pictures with Google’s Picasa – XSS demo

From a blog post on “We’ve posted a snippet of some of the research we’ve done on Cross Application Scripting and URI exploitation. It’s time we showed another example of how dangerous these URI handler vulnerabilities can be. This example really highlights the functionality abuse that Billy and I have been talking about.”

Read more at:

Don't miss