Google fixes Gmail cross-site request forgery flaw
Web application giant Google said today that it has fixed what researchers described as a cross-site request forgery vulnerability that could allow an attacker to steal a Gmail user's contact list.
Jan 2 2007 5:12PM