Google Analytics y seguridad

Critical Security Vulnerability in Google Analytics by Yoast #319

About Vulnerability

This plugin is vulnerable to a Stored Cross Site Scripting vulnerability,This issue was exploited when administrator users with access to “Google Analytics by Yoast” Setting in wordpress above listed vulnerable parameter is vulnerable for stored XSS. A malicious administration can hijack other users session, take control of another administrator’s browser or install malware on their computer.

————-

————–

Google Analytics — Yes, it is a security risk

Obama’s website, Mountain View’s javascript

Analysis Judging from some of the comments responding to our story about security sloppiness on Barack Obama’s website, it’s clear a discussion about the risks of third-party javascript is in order. Contrary to what many commentators believe, widgets used by Google Analytics and similar services do represent a threat, especially if you’re a high-profile target.

http://www.theregister.co.uk/2008/11/22/google_analytics_as_security_risk/

+ http://www.theregister.co.uk/2008/11/20/barack_obama_website_insecurity/

————-

Security and privacy in Universal Analytics

https://support.google.com/analytics/answer/2838718?hl=en

———–

! Este post “desaparece” porque Google redirecciona automáticamente

https://productforums.google.com/forum/#!topic/analytics/GdmiI_-VvsQ

———–

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s