Yahoo Mail Hit by Scripting Vulnerability

by admin June 26, 2008 at 8:33 pm

Vendor admits it had a serious security flaw, but was anyone hurt?

Fleeing employees and irate shareholders aren’t the only things that Yahoo is worrying about these days.

The embattled search portal is also fighting the good fight against security vulnerabilities.

Yahoo has admitted that its Yahoo Mail online e-mail service was at risk from a Cross Site Scripting (XSS) vulnerability.

XSS flaws are among the most common and risky type of vulnerability in Web-based applications potentially allowing attackers to steal users’ information or infect them with malicious code.

Read more: