Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Old Habits Die Hard: Cross-Zone Scripting in Dropbox & Google Drive Mobile Apps
Oct 19 2012 10:14AM
Roi Saltzman (roisaltzman gmail com)
Recently, I discovered a security vulnerability in several file-sharing apps:
DropBox iOS app, DropBox Android app and Google Drive iOS app.
Exploiting this vulnerability, an attacker could steal arbitrary files
from a DropBox / Google...
[ more ]
Copyright 2010, SecurityFocus