Report: Presidential Candidate Web Sites Serve Up XSS Vulnerabilities

A blogger going by Brendan is alleging that Barack Obama, Joe Biden, John Edwards, Mitt Romney, John Cox, Newt Gingrich, Tom Tancredo, and even the Whitehouse.gov web sites are vulnerable to Cross-Site Scripting Vulnerabilities.

Cross-Site Scripting (XSS) is a type of security vulnerability found in web pages that allow code injection. Malicious links can be created and posted to web pages or sent by email and can be used to trick an unsuspecting user to click on them and think its safe as they go to a legitimate site. The malicious individual can use the XSS vulnerability for phishing attacks or to exploit vulnerabilities in the target’s browser that can give the attacker access to target’s entire computer system.

See the XSSBlog for the full details on each of the vulnerabilities.

[tags]Barack Obama, Joe Biden, John Edwards, Mitt Romney, John Cox, Newt Gingrich, Tom Tancredo, president, 2008[/tags]

usrbingeek is a Commercial, Wedding, and Portrait Photographer in Vermont and is also a Global Admin on the WyldRyde IRC Network. WyldRyde offers a free chatroom that can be added to any web site or blog and is home to the Lockergnome Chat.