A few months ago I found a really fine XSS in Google's Custom Search Engine. The trick I needed to use doesn't seem to be broadly known and that's a pity as it sometimes might allow to make unexploitable exploitable. So here it is: XSS via Host header - Internet Explorer only. The trick was discovered by Sergey Bobrov (@Black2Fan) two years ago and still hasn't been fixed in IE11. Details of the b
![XSS via Host header - www.google.com/cse](https://cdn-ak-scissors.b.st-hatena.com/image/square/83104684db4f461cbd9c03773148a1d650aee905/height=288;version=1;width=512/https%3A%2F%2Fblogger.googleusercontent.com%2Fimg%2Fb%2FR29vZ2xl%2FAVvXsEgGL3m0Tk7yHv70YX3qUogCzSvlFzSmIiEssUXNMN-02o1rCgSffRJ3hpF-YuNtfNFGpIQPw8AjN1KAKRI646N0P1moxQdqXbQdVXsL6gerhoNYtxvDc-AvQPnoInjs-khR5RX4MXUDRVg%2Fw1200-h630-p-k-no-nu%2Fcse1.png)