[ I really didn't want to write about this, but because many news sites (Slashdot, Digg) already talk about this, it can't bring too much trouble. ]
Do you remember the post about the XML that contained your Gmail contact list? Well, Haochi from Googlified discovered that by adding "out=js" at the end of that URL, you can get the same data in JavaScript format. Even more, if you add "callback=name", you get a JavaScript code that can be used in any web site. This thing has a name: JSON and it's a very practical way of importing data into a JavaScript application. The problem here is that anyone can import your Gmail contact list (if you are logged in) and send it to a server.
The JavaScript file is used by Google to make it easy to send videos to your contacts in Google Video, to invite people in Google Spreadsheets and Google Notebook. So it's not a bug in Gmail, they just exposed some data in a wrong way.
Google can fix this in many ways and will certainly fix it. Until then, it's a good idea to sign out of Gmail when you're not using it.
Update (after a day): Google fixed the security vulnerability.
Popular Posts
-
Hello/greetings. First, apologies for my recent elusive behavior - I've been submerged in the Recordio since the tour w/ sOuth ... Well... -
It seems that this year Google's most popular web applications will work offline. After Google Reader and Google Docs , two other servi... -
To anyone who still may be reading this for whatever reason (boredom? slow reader? haven't yet discovered reddit ?), I'm back in the...
-
kim kardashian 2011 april kim kardashian 2011 april kim kardashian 2011 april kim kardashian 2011 april kim kardashian 2011 april kim kardas... -
Knol is a new Google service created for sharing knowledge. The service has been announced in December 2007 and it's now publicly avai... -
Anime love couples wallpaper.Anime Love Couples , Anime Wallpapers HD ,HD Wallpapers - Lazydesis d-gray-man-exorcist-lavi-allen-yu-wallpap... -
Julian Casablancas Birthday: August 23, 1978 Place of Birth: New York City, New York, United States -
Alex Pettyfer LOOK ALIKE News, Ha ze Nov 21, 11:48 AM iPod scrollwheel and interface, end of story. There are music playing phones out ther...
-
Wallpaper Harley Davidson free harley pictures Harley Wallpaper Free The Free Harley Davidson Free Harley Davidson Wallpaper Harley D...
-
lank family tree template jamesi Nov 20, 02:15 AM Here we go folks. Just to put everybody's mind at ease. These are the guys who pr...
