Your search for cross-site scripting returned 43 results.

Sort results:

Hint: If you don't want the words you enter to be searched for separately, use quotation marks to find people or exact phrases. See our Search Help section for more hints.

Brief

Multiple WordPress plugins vulnerable to cross-site scripting

The issue was identified last week and researchers worked together with plugin developers to ensure patches were ready before the problem was disclosed.

News Critical XSS vulnerability addressed in WordPress

Critical XSS vulnerability addressed in WordPress

A critical cross-site scripting vulnerability was addressed, which could enable an anonymous user to compromise a site.

Brief

Researcher identifies XSS bug impacting Kaspersky website

A cross-site scripting vulnerability identified on the Kaspersky website could enable an attacker to steal a variety of data.

Brief

Kaspersky quickly addresses XSS flaw impacting company website

A cross-site scripting flaw impacting a Kaspersky website was quickly addressed by the security software company.

Brief

Researcher identifies XSS vulnerability affecting Citibank website

A researcher identified a cross-site scripting vulnerability affecting the Citibank website, which has yet to be patched.

Brief

Stored XSS bug in WordPress, researchers advise to disable comments

A stored cross-site scripting (XSS) vulnerability impacting current WordPress versions has been identified by a researcher with Finnish IT company Klikki Oy.

Brief

Researcher discovers flaw in Amazon Kindle Library

A security expert discovered a vulnerability in Amazon's Kindle Library that could lead to cross-site scripting attacks and account compromises.

News Most Yahoo sites impacted by XSS flaw in comments section

Most Yahoo sites impacted by XSS flaw in comments section

A cross-site scripting flaw that existed in the comments section of most Yahoo sites has been fixed, but could have been exploited to steal visitor information.

Webcast

How to Detect SQL Injection & XSS Attacks using SIEM Event Correlation

Two of the oldest and most common attacks used against web applications, SQL injection attacks and cross-site scripting attacks (XSS), continue to impact thousands of websites and millions of users each year.

Webcast

How to detect SQL Injection & XSS attacks with AlienVault USM

They may be the oldest tricks in the book, but SQL injection and cross-site scripting (XSS) attacks still put a hurt on thousands of web applications every year, impacting millions of users—your users and customers.

News Smartphones at risk of malicious code injection through HTML5-based apps

Smartphones at risk of malicious code injection through HTML5-based apps

Researchers have discovered a new attack, known as Cross-Device Scripting, that can allow an attacker to compromise most smartphones by injecting malicious code through HTML5-based apps.

Brief

Doctoral student finds XSS vulnerability on Weather.com

Wang Jing wrote that the The Weather Channel's site used URLS to create its tags without filtering malicious script codes, which left them vulnerable to attack.

Brief

AskMen.com changes original statement, says readers were exposed to malware

AskMen.com changes its original statement and reveals that roughly 0.1 percent of its readers were exposed to malware.

Brief

Adobe makes delayed updates for Reader, Acrobat available

The Reader and Acrobat fixes were delayed a week due to issues found during testing.

Brief

Firm finds 'high risk' bugs in SAP BusinessObjects software

The enterprise software flaws could allow attackers to access customer data, financial info and other critical data at companies.

Brief

Adobe's new bug bounty program rewards researchers with HackerOne rep scores

Adobe's new web application vulnerability disclosure program will reward researchers with a boosted reputation score on HackerOne.

Brief

Twitter announces launch of bug bounty program

The social media giant recently announced its new bug bounty program, rewarding researchers that find security vulnerabilities in its web services.

Brief

Adobe fixes Flash Player, ColdFusion flaws

Adobe addressed nine Flash Player flaws in three CVEs, giving four bugs the company's highest priority rating.

Brief

Singaporean hacker to serve six months after hacking prime minister's website

Mohammad Azhar Tahir used a XSS attack to hack into and deface the prime minister's website.

Brief

eBay addresses XSS issue affecting auction page visitors

Due to the flaw, iPhone bidders were vulnerable to being redirected to a phishing page.

Page 1 of 3

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US