Site Overlay

Greasemonkey’s Slippery Side

Just in case you haven’t seen it elsewhere, it’s being recommended you uninstall Greasemonkey, a Firefox (and Opera) script tool, because of a serious flaw that serious flaw that leaves all your files vulnerable: In other words, running a Greasemonkey script on a site can expose the contents of every file on your local hard drive to that site. Running a Greasemonkey script with “@include *” (which, BTW, is the default if no parameter is specified) can expose the contents of every file on your local hard drive to every site you visit. And, because GM_xmlhttpRequest can use POST as well as GET, an attackerContinue readingGreasemonkey’s Slippery Side

Copyright © 2020 loose wire blog. All Rights Reserved. | Catch Sketch by Catch Themes