Cross Site Scripting – Page 4

Serious flaws in six printer brands discovered, fixed

Posted on August 15, 2019 by Danny Bradbury

There are many ways to compromise company data, but IT teams often overlook one of the most serious: the humble printer. Continue reading Serious flaws in six printer brands discovered, fixed→

Google Chrome is ditching its XSS detection tool

Posted on July 18, 2019 by Danny Bradbury

Google’s throwing in the towel on XSS Auditor and putting its trust in Trusted Types instead. Continue reading Google Chrome is ditching its XSS detection tool→

WordPress Plugin WP Statistics Patches XSS Flaw

Posted on July 5, 2019 by Lindsey O'Donnell

A cross-site scripting vulnerability in WordPress plugin WP Statistics could have enabled full website takeover. Continue reading WordPress Plugin WP Statistics Patches XSS Flaw→

IBM Patches Critical, High-Severity Flaws in Spectrum Protect

Posted on July 2, 2019 by Lindsey O'Donnell

IBM has disclosed multiple critical and high-severity flaws across an array of products, the most severe of which exist in its IBM Spectrum Protect tool. Continue reading IBM Patches Critical, High-Severity Flaws in Spectrum Protect→

Microsoft Outlook for Android Open to XSS Attacks

Posted on June 21, 2019 by Tara Seals

A spoofing bug (CVE-2019-1105) can open the door to an email attack chain. Continue reading Microsoft Outlook for Android Open to XSS Attacks→

Mozilla Fixes Second Actively-Exploited Firefox Flaw

Posted on June 21, 2019 by Lindsey O'Donnell

Mozilla has patched a second actively-exploited vulnerability in Firefox this week. Continue reading Mozilla Fixes Second Actively-Exploited Firefox Flaw→

Important Flaw in Outlook App for Android Affects Over 100 Millions Users

Posted on June 20, 2019 by Swati Khandelwal

Update (22 June 2019) — More technical details and proof-of-concept for the OutLook for Android vulnerability has been released that we have covered in a separate article here.

Microsoft today released an updated version of its “Outlook for Android” t… Continue reading Important Flaw in Outlook App for Android Affects Over 100 Millions Users→

Mozilla Patches Firefox Critical Flaw Under Active Attack

Posted on June 19, 2019 by Lindsey O'Donnell

Mozilla released a new update for Firefox after discovering a critical flaw under active attack. Continue reading Mozilla Patches Firefox Critical Flaw Under Active Attack→

Microsoft Management Console Bugs Allow Windows Takeover

Posted on June 18, 2019 by Tara Seals

Multiple cross-site scripting (XSS) bugs and an XML external entity (XXE) problem opens the door to takeover of admin desktops. Continue reading Microsoft Management Console Bugs Allow Windows Takeover→

How I Discovered My First Vulnerability

Posted on June 17, 2019 by David Balaban

By David Balaban
I have read a couple of books recently about different vulnerabilities in order to be able to better protect my projects/websites. Today, I want to share a story about how I managed to use this knowledge in practice. Disclaimer This ma… Continue reading How I Discovered My First Vulnerability→