October 2006 - The HP Security Laboratory Blog -
Sign in
|
Join
|
Help
SHOP PRODUCTS & SERVICES
EXPLORE & CREATE
CONNECT WITH OTHERS
SUPPORT & DRIVERS
COMMUNITY HOME
HP BLOGS
APP SECURITY BLOGS
APP SECURITY FORUMS
October 2006 - The HP Security Laboratory Blog
The HP Security Laboratory Blog
Home
Contact
Syndication
RSS for Posts
Atom
RSS for Comments
Recent Posts
SSLv3/TLS Renegotiation Stream Injection
Top Five Web Application Vulnerabilities 10/27/09 - 11/8/09
Now Hiring: HP Security Center Pen Tester
Take your %00 and shove it
HP Application Security Center at OWASP DC 11/11-13
Tags
Ajax
Application Security Center
breach
Cross-Site Scripting
data breach
hacked
hackers
Headers
HIPAA
HTML Injection
HTTP
Information Disclosure
Input Validation
JavaScript
Malware
Microsoft
Password Security
Personal Health Information
Privacy
Research
SQL Injection
vulnerabilities
Web Application Security
Wordpress
XSS
View more
Archives
May 2009 (5)
April 2009 (5)
March 2009 (5)
February 2009 (6)
January 2009 (7)
December 2008 (2)
November 2008 (1)
August 2008 (1)
June 2008 (1)
January 2008 (1)
December 2007 (2)
November 2007 (5)
October 2007 (1)
August 2007 (2)
July 2007 (2)
April 2007 (1)
March 2007 (1)
January 2007 (2)
December 2006 (1)
November 2006 (1)
October 2006 (2)
July 2006 (4)
June 2006 (5)
May 2006 (1)
April 2006 (2)
Sort by:
Most Recent
|
Most Viewed
|
Most Commented
Ajax Webcast Questions
Please post any questions/comments/discussions you have with our Ajax (in)security webcast here and I'll do my best to answer them here. For those who haven't seen the WebCast yet, you can get there by going here: https://download.spidynamics...
Published
10-13-2006 1:30 PM
by
Billy
Filed under:
Ajax
Stealing Search Engine Queries from JavaScript
SPI Labs has discovered a practical method of using JavaScript to detect the search queries a user has entered into arbitrary search engines. As seen with the recent leakage of 36 million search queries made by half-a-million America Online subscribers...
Published
10-06-2006 10:14 AM
by
mark.painter
Privacy Statement