Google XXE Vulnerability

[Mark Litchfield <mark () securatary com>]

Hi All,

There was an XML external entity vulnerability within Googles Public 
data explorer.  This was submitted to Google as part of their Bug Bounty 
Program.

For the full write up with screen shots - 
http://www.securatary.com/vulnerabilities

--
All the best

Mark Litchfield
http://www.securatary.com
Twitter - http://twitter.com/securatary


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/