But, how does it fare under the single payer attack? Have the other browsers mitigated the bitten finger exploit?
> -----Original Message----- > > I apologize in advance for the computer-related post. > > Security researcher Brian Mastenbrook uncovered a cross-site scripting > vulnerability in Ruby on Rails and quickly had injected Javascript code > running in Twitter. > > "One surprise I discovered during the process was that IE8 includes a Cross > Site Scripting filter which effectively blocked this attack. I'm very > impressed with the effort that Microsoft's taken to > mitigate one of the most common web application security issues. Every other > browser vendor needs to add this functionality _yesterday_." ************************************************************************* ** List info, subscription management, list rules, archives, privacy ** ** policy, calmness, a member map, and more at http://www.cguys.org/ ** *************************************************************************
