Hi,
During the security audit of Google APIs Client Library for PHP multiple XSS vulnerabilities were discovered using DefenseCode ThunderScan SAST application source code security analysis platform. The Google API Client Library for PHP is designed for PHP client-application developers. It offers simple, flexible, powerful access to many Google APIs such as Google+, Drive, or YouTube.
The Cross-Site Scripting vulnerability can enable the attacker to construct the URL that contains malicious JavaScript code. If the administrator of the site makes a request to such an URL, the attacker's code will be executed, with unrestricted access to the site in question. The attacker can entice the administrator to visit the URL in various ways, including sending the URL by email, posting it as a part of the comment on the vulnerable site or another forum. Once the unsuspecting user has visited such an URL, the attacker can proceed to send requests to the API on the behalf of the victim from his JavaScript.
Full advisory can be read on the following URL: http://www.defensecode.com/advisories/DC-2017-04-012_google-api-php-client_Advisory.pdf
Regards,
DefenseCode Team
Very interesting to read this article.I would like to thank you for the efforts you had made for writing this awesome article. madalin stunt cars
ReplyDeleteAdidas Yeezy Boost 350
ReplyDeleteAdidas Marathon Shoes
Adidas Springblade Shoes
Adidas Harden Boost Shoes
Adidas NMD Shoes
Salomon Shoes
Salomon Speedcross 4
Salomon S-LAB Sense 4 Shoes
I know there will be many difficulties and challenges but I am determined to do it. If it does not succeed then it will be a lesson for me as well catmario4.com
ReplyDeletenice blog
ReplyDeleteandroid training in bangalore
ios training in bangalore
machine learning online training
useful blog
ReplyDeletepython interview questions
cognos interview questions perl interview questions
vlsi interview questions
web api interview questions
msbi interview questions
laravel interview questions aem interview questions
ReplyDeletesalesforce interview questions
oops abab interview questions
itil interview questions
informatica interview questions
extjs interview questions
sap bi interview questions hive interview questions
ReplyDeleteseo interview questions
as400 interview questions wordpress interview questions
accounting interview questions
basic accounting and financial interview questions
It is imperative that we read blog post very carefully. I am already done it and find that this post is really amazing.
ReplyDeleteobat gabagen
obat ginjal bengkak
obat keloid
obat limpa bengkak
obat thalasemia
obat kencing tidak tuntas
obat tbc tulang
Thanks for checking.
ReplyDeletenice blog
ReplyDeleteTO LEARN
1) data science
2)Machine Learning
3) IOT
4) cloud computing
5)ethical hacking
https://www.livelearn.co.in/course/data-science
ReplyDeletehttps://www.livelearn.co.in/course/aws-sysops-administrator-associate
As for me, it's quite important to make homework fun. You can check this out and find really useful advices about it
ReplyDeleteTransporting of personal goods or commercial goods should always done in the most cost effective manner. We would recommend you to consider our “Instant Call” services to compare quotes and shortlist your provider.
ReplyDeletepackers and movers coimbatore
packers and movers in nashik
packers and movers in panchkula
packers and movers in zirakpur
packers and movers allahabad
packers and movers in amritsar
packers and movers mangalore
packers and movers bilaspur
packers and movers in ajmer
packers and movers pondicherry
It is common to find ourselves in situation where the dates to vacate your facilityis predetermined and you are not ready yet to move into the would-be facility. The situation may apply to both – home as well as office. In such situations, you could opt for our storage and warehousing services.
ReplyDeletepackers and movers satna
packers and movers bhilai
packers and movers in cuttack
packers and movers in durgapur
packers and movers in meerut
packers and movers rajahmundry
packers movers jodhpur
packers and movers kakinada
packers and movers korba
packers and movers dhanbad
Anyone reading this text must have come across the need for a home relocation. This requirement is typical of the city life andcareer-moves. Moving India provides comprehensive home relocation covering not only the furniture, fixtures and utensils but also your vehicle and pets.
ReplyDeletepackers and movers thrissur
packers and movers in belgaum
packers and movers kharagpur
packers & movers in nagpur
packers and movers btm layout
ReplyDeleteVery useful and interesting information. Thanks
Packers and Movers in Bangalore
Packers and Movers in Pune
Packers and Movers in Mumbai
Packers and Movers in Hyderabad
Packers and Movers in Delhi
packers and movers in panchkula
Packers and Movers in Kolkata
Packers and Movers in Chennai