Tag: xss

WordPress patches critical XSS vulnerability 
By Juha Saarinen | Apr 28, 2015 | Comment Now 
Commenters could cross-site script.
IBM plugs Tivoli MDM cross-scripting flaw 
By Juha Saarinen | Dec 3, 2014 | Comment Now 
Users told to upgrade to secure version.
eBay cross-scripting vulnerability exploited 
By Juha Saarinen | Sep 18, 2014 | Comment Now 
Auction site slow to respond.
Our wholly insecure web 
By Juha Saarinen | Jun 17, 2014 | Comment Now 
[Blog post] Time to re-engineer for security.
XSS behind a decade of bank hacks 
By Danielle Walker | Nov 15, 2013 | Comment Now 
Penetration testing research.
Yahoo! dumps t-shirt bug bounty for $15,000 cheques 
By Darren Pauli | Oct 3, 2013 | Comment Now 
Security engineer bought tees with own cash
NASDAQ slow to plug site vulns, pen tester says 
By Danielle Walker | Sep 18, 2013 | Comment Now 
Swiss pen testers report flaw.
$5k bug bounty paid for Google.com XSS 
By SC Australia Staff | Jul 31, 2013 | Comment Now 
Google Finance glitch.
'Shoddy' software leaves major holes in NSA site 
By Dan Raywood | Jul 2, 2013 | Comment Now 
Attackers could impersonate web traffic.
OWASP Top 10 released for 2013 
By Dan Kaplan | Jun 13, 2013 | Comment Now 
Injection, broken authentication/session management and cross-site scripting make up the top three spots.
Google ups bug bounty rewards 
By Marcos Colon | Jun 12, 2013 | Comment Now 
Gmail bugs worth $5000.
Twitter, Microsoft, LinkedIn, Yahoo open to hijacking 
By Darren Pauli | Mar 22, 2013 | Comment Now 
Cookie cockup permits account takeover.
Kim Dotcom's Mega details first wave of security bugs 
By Darren Pauli | Feb 12, 2013 | Comment Now 
Netted through bug bounty program.
Spammers stole Yahoo Xtra contact lists: exec 
Mega security bugs detailed 
By Darren Pauli | Feb 11, 2013 | Comment Now 
Serious bugs found.
PayPal's security works 
By Karen Epper Hoffman | Feb 5, 2013 | Comment Now 
PayPal's Andy Steingruebl knows security is not an insular task. By looking outside of its own walls, the company has taken the fight to the enemy, and helped everyone else in ...
XSS attacks boomed 
By SC Staff | Jan 31, 2013 | Comment Now 
Cross-site scripting (XSS) and SQL injection attacks remain the most prominent cyber attack method.
Hacker nabs Yahoo! site backups 
By Darren Pauli | Dec 17, 2012 | Comment Now 
Finds website flaws.
Researcher gains admin access to Kaseya, ManageEngine 
Researcher owns blue chip managed service platforms 
By Darren Pauli | Nov 18, 2012 | Comment Now 
Zero day dropped at #Kiwicon.
Sign up to receive iTnews email bulletins
Latest Comments
Should law enforcement be able to buy and use exploits?

   |   View results
Only in special circumstances
Yes, but with more transparency