<A HREF="http://blogs.pcworld.com/staffblog/archives/003395.html">Google has fixed a flaw</A> that would have allowed Web sites to harvest email addresses from Gmail contact lists. For an attack to work, a user would have to log into a Gmail account and then visit a Web site that incorporates specially designed JavaScript code. This could have allowed spammers to collect reams of new email addresses. Proof-of-concept code was publicly posted, and Google appears to have fixed the problem within 30 hours of being notified, wrote Haochi Chen, a blogger who tracks the company. A Google spokeswoman in London confirmed today that the problem was fixed.