10-16-2005, 10:09 AM
Quote:With the advent of social networking sites, becoming more popular is as easy as crafting a few lines of JavaScript code, it seems.
One clever MySpace user looking to expand his buddy list recently figured out how to force others to become his friend, and ended up creating the first self-propagating cross-site scripting (XSS) worm. In less than 24 hours, "Samy" had amassed over 1 million friends on the popular online community
The worm has piqued the interest of a number of security professionals who say XSS is a major problem that many companies overlook
"Found in over 90 percent of Web sites, Cross-Site Scripting vulnerabilities are by far the most common security issue,"
full article: http://www.betanews.com/article/crosssit...1129232391