Attackers could have applied malicious code to gather email addresses or even compromise the account, according to "Anthony," a 14-year-old blogger who discovered the vulnerability.
He said he found the flaw while trying to email JavaScript code from his Yahoo account to his Gmail account.
Google patched the problem shortly after learning about it.
"We learned of a minor security flaw in Gmail a little while ago and worked quickly to fix the problem, which has now been resolved," a Google spokeswoman said. "We encourage all vulnerability reporters to follow responsible disclosure practices and notify vendors first before making the vulnerability public."
This is not the first Gmail vulnerability discovered since the webmail service, popular for its large storage space and organization and search features, was launched.
In January 2005, Google was made aware of a bug that allowed hackers to reveal details of other users' personal emails, and even their account passwords.
Later in the year, Google patched two holes that would have allowed attackers to gain control of Gmail accounts and potentially carry out scams.
.png&w=120&c=1&s=0)
Tech in Gov 2025
Forrester's Technology & Innovation Summit APAC 2025
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Integrate Expo 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
