We already have our first, via TwitPwn - it's actually vulnerabilities in the bit.ly service that allows shortening of URLs for easy Tweeting. It was discovered that four XSS (Cross Site Scripting) vulnerabilities existed within the coding, and after being informed, Bit.ly fixed them all - sometimes after fixing them partially then having to go back and re-fix them completely.
TwitPwn gave bit.ly a very poor rating, as it took them nearly 45 days to repair some relatively simple XSS vulnerabilities.
Isn't this fun?
No comments:
Post a Comment
Please tell me what you think.