xss

Microsoft won't patch Edge XSS vulnerability

Microsoft won't patch Edge XSS vulnerability

Content security policy bypass is 'by design'.
Juha Saarinen Sep 7 2017 6:33AM Security
WordPress patches XSS, privilege escalation bugs

WordPress patches XSS, privilege escalation bugs

26 other vulnerabilities plugged in update.
Juha Saarinen Sep 16 2015 7:55PM Security
Netflix releases Sleepy Puppy anti-XSS tool

Netflix releases Sleepy Puppy anti-XSS tool

Helps devs tackle common yet dangerous security problem.
Juha Saarinen Sep 4 2015 10:01AM Security
Salesforce cross-scripting flaw put users at risk

Salesforce cross-scripting flaw put users at risk

Single sign on exacerbated problem.
Allie Coyne Aug 17 2015 2:32PM Security
WordPress patches critical XSS vulnerability

WordPress patches critical XSS vulnerability

Commenters could cross-site script.
Juha Saarinen Apr 28 2015 7:30AM Security
IBM plugs Tivoli MDM cross-scripting flaw

IBM plugs Tivoli MDM cross-scripting flaw

Users told to upgrade to secure version.
Juha Saarinen Dec 3 2014 12:23PM Security
eBay cross-scripting vulnerability exploited

eBay cross-scripting vulnerability exploited

Auction site slow to respond.
Juha Saarinen Sep 18 2014 8:20AM Security
Our wholly insecure web

Our wholly insecure web

[Blog post] Time to re-engineer for security.
Juha Saarinen Jun 17 2014 5:15PM Security
XSS behind a decade of bank hacks

XSS behind a decade of bank hacks

Penetration testing research.
Danielle Walker Nov 15 2013 4:01PM Security
Yahoo! dumps t-shirt bug bounty for $15,000 cheques

Yahoo! dumps t-shirt bug bounty for $15,000 cheques

Security engineer bought tees with own cash
Darren Pauli Oct 3 2013 2:25PM Security
NASDAQ slow to plug site vulns, pen tester says

NASDAQ slow to plug site vulns, pen tester says

Swiss pen testers report flaw.
Danielle Walker Sep 18 2013 7:00AM Security
$5k bug bounty paid for Google.com XSS

$5k bug bounty paid for Google.com XSS

Google Finance glitch.
SC Australia Staff Jul 31 2013 12:29PM Security
'Shoddy' software leaves major holes in NSA site

'Shoddy' software leaves major holes in NSA site

Attackers could impersonate web traffic.
Dan Raywood Jul 2 2013 7:30AM Security
OWASP Top 10 released for 2013

OWASP Top 10 released for 2013

Injection, broken authentication/session management and cross-site scripting make up the top three spots.
Dan Kaplan Jun 13 2013 10:11AM Security
Google ups bug bounty rewards

Google ups bug bounty rewards

Gmail bugs worth $5000.
Marcos Colon Jun 12 2013 10:58AM Security
Twitter, Microsoft, LinkedIn, Yahoo open to hijacking

Twitter, Microsoft, LinkedIn, Yahoo open to hijacking

Cookie cockup permits account takeover.
Darren Pauli Mar 22 2013 4:30PM Security
Kim Dotcom's Mega details first wave of security bugs

Kim Dotcom's Mega details first wave of security bugs

Netted through bug bounty program.
Darren Pauli Feb 12 2013 7:25AM Security
Spammers stole Yahoo Xtra contact lists: exec

Spammers stole Yahoo Xtra contact lists: exec

Users smashed.
Darren Pauli Feb 11 2013 5:47PM Security
Mega security bugs detailed

Mega security bugs detailed

Serious bugs found.
Darren Pauli Feb 11 2013 1:28PM Security
PayPal's security works

PayPal's security works

PayPal's Andy Steingruebl knows security is not an insular task. By looking outside of its own walls, the company has taken the fight to the enemy, and helped everyone else in the process.
Karen Epper Hoffman Feb 5 2013 9:25AM Security

Log In

  |  Forgot your password?