Hacker claims finding vulnerability in Google Labs

An “ethical" hacker claimed to have found a critical vulnerability in Google’s “Google Labs" website, posting screenshots of the supposed problem online. Shadman Tanjim, who claims to be with the Bangladesh Cyber Army, said he already alerted Google to the vulnerability but has yet to receive a response from it. “I already contact with Google Corporation but they don’t give positive response, I think this is their big fault, and will suffer for that. But if they give Positive response then this will be very good for them. Thanks a Ton!!!" he said in a statement posted on The Hacker News. He said the Google Labs website (googlelabs.com or labs.google.com) has an SQL (structured query language) injection vulnerability that allows hackers to get data from the database in the site. The Hacker News said three SQL injection tools were used to test the vulnerability, with the tests confirming the site is vulnerable. Screenshots of the vulnerability were posted on the Bangladesh Cyber Army site. — LBG, GMA News