thanks for bringing this to our attention. We have filed this internally and I have give that issue a knock to give it some priority, as soon as we hear back we will update this thread. Thanks!
Austin On Feb 10, 8:03 am, Bart Thate <bth...@gmail.com> wrote: > Hello wavers and more hello Google Team, > > Today a gadget was inserted into a public wave of mine, which directed > me on joining the wave to the following page: > > http://hosting.gmodules.com/ig/gadgets/file/100726510508187623906/wav... > > this page is a phishing login page of google wave which upon > registration logs stuff in a spreadsheet. The effect is that i cannot > enter the wave as it instantly directs me to the html page, so i > cannot even remove the thing ;] > > Obviously we need some stricter level of security in waves, now i wish > i had something like +v in waves, so people can add txt but not insert > gadgets etc. > > The wave is at: > > https://wave.google.com/wave/#restored:wave:googlewave.com!w%252BRvJR... > > Greetings, > > Bart -- You received this message because you are subscribed to the Google Groups "Google Wave API" group. To post to this group, send email to google-wave-...@googlegroups.com. To unsubscribe from this group, send email to google-wave-api+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-wave-api?hl=en.
