Adventures In Programming » google http://www.adventuresinprogramming.com Adventures in programming Tue, 08 Jan 2008 10:38:12 +0000 en hourly 1 http://wordpress.org/?v=3.0.1 Phising Exploit Discovered in ‘Google Public Search Service’ http://www.adventuresinprogramming.com/2006/09/16/phising-exploit-discovered-in-%e2%80%98google-public-search-service%e2%80%99/ http://www.adventuresinprogramming.com/2006/09/16/phising-exploit-discovered-in-%e2%80%98google-public-search-service%e2%80%99/#comments Sat, 16 Sep 2006 13:09:59 +0000 Kodewulf http://adventuresinprogramming.com.s22377.gridserver.com/2006/09/16/phising-exploit-discovered-in-%e2%80%98google-public-search-service%e2%80%99/ Eric Farraro from software.dev discovered a nasty hole in the Google Public Search Service.

Yesterday I mentioned that I had discovered an exploit in a little known service from a major web company. It turns out that that exploit is in a little known service called ‘Google Public Service Search’. This service is meant for universities or other non-profit organizations to add a ‘Google’ search to their website. It differs from the other free Google site search in that it allows you to customize the header and footer of the search results page. It’s interesting to note that the code for your header and footer is actually hosted by Google, on their server.

You can read the original entry on his blog.

]]> http://www.adventuresinprogramming.com/2006/09/16/phising-exploit-discovered-in-%e2%80%98google-public-search-service%e2%80%99/feed/ 0