Critical XSS Flaw Affected "Reset Password" Page of Facebook
According to security reports published by XSSed on January 4, 2009, security expert DaiMon has yet again detected another crucial cross-site scripting bug that affects the "Reset Password" page of Facebook.
Initial research conducted by the security researcher indicates that cyber criminals can insert malicious software to phish user ID and other critical personal details from countless members of the Facebook community by exploiting this vulnerability.
According to the most recent information on this XSS flaw, it has still not been patched.
Security analysts maintain that the XSS flaws are undoubtedly the most common category of security vulnerabilities infecting websites. They permit hackers to insert their distinctive
» SPAMfighter News - 19-01-2009