Pinterest vulnerable to XSS and iframe attack vectors

(37 views)

Security researcher Shadab Siddiqui recently uncovered several vulnerabilities in the social media site Pinterest, which has more than 10 million active users. A security researcher identified a cross-site scripting (XSS) vulnerability and an iframe injection issue that could allow a hacker to hijack user accounts and perform other malicious operations. The security researcher also found a URL redirection flaw that could be leveraged to redirect the site's visitors to other potentially malicious domains. These flaws have been made available to the Pinterest admins.

March 1, 2012
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.

What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.