Cross-Site Framing Vulnerability Test (Clickjacking)
Paras Katiyar
paraskatiyar29 at gmail.com
Mon Nov 10 14:47:10 EST 2014
I am Paras Katiyar, a security researcher from India. While surfing
your website i came across some vulnerabilities.
#1 Clickjacking
Severity - HIGH
Vulnerable URL - http://pidgin.im/security/
Vulnerability details - According to this vulnerability the page at
http://pidgin.im/security/ can be framed into some other html pages
which can be used by attacker to perform malicious attacks.
Regards,
Paras Katiyar
Security Researcher
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pidgin.im/cgi-bin/mailman/private/security/attachments/20141111/a6361d54/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pidgin.JPG
Type: image/jpeg
Size: 112843 bytes
Desc: not available
URL: <https://pidgin.im/cgi-bin/mailman/private/security/attachments/20141111/a6361d54/attachment-0001.jpe>
More information about the security
mailing list