xss

WordPress patches XSS, privilege escalation bugs

WordPress patches XSS, privilege escalation bugs

26 other vulnerabilities plugged in update.
Sep 16 2015 7:55PM
Netflix releases Sleepy Puppy anti-XSS tool

Netflix releases Sleepy Puppy anti-XSS tool

Helps devs tackle common yet dangerous security problem.
Sep 4 2015 10:01AM
Salesforce cross-scripting flaw put users at risk

Salesforce cross-scripting flaw put users at risk

Single sign on exacerbated problem.
Aug 17 2015 2:32PM
WordPress patches critical XSS vulnerability

WordPress patches critical XSS vulnerability

Commenters could cross-site script.
Apr 28 2015 7:30AM
IBM plugs Tivoli MDM cross-scripting flaw

IBM plugs Tivoli MDM cross-scripting flaw

Users told to upgrade to secure version.
Dec 3 2014 12:23PM
eBay cross-scripting vulnerability exploited

eBay cross-scripting vulnerability exploited

Auction site slow to respond.
Sep 18 2014 8:20AM
Our wholly insecure web

Our wholly insecure web

[Blog post] Time to re-engineer for security.
Jun 17 2014 5:15PM
XSS behind a decade of bank hacks

XSS behind a decade of bank hacks

Penetration testing research.
Nov 15 2013 4:01PM
Yahoo! dumps t-shirt bug bounty for $15,000 cheques

Yahoo! dumps t-shirt bug bounty for $15,000 cheques

Security engineer bought tees with own cash
Oct 3 2013 2:25PM
NASDAQ slow to plug site vulns, pen tester says

NASDAQ slow to plug site vulns, pen tester says

Swiss pen testers report flaw.
Sep 18 2013 7:00AM
$5k bug bounty paid for Google.com XSS

$5k bug bounty paid for Google.com XSS

Google Finance glitch.
Jul 31 2013 12:29PM
'Shoddy' software leaves major holes in NSA site

'Shoddy' software leaves major holes in NSA site

Attackers could impersonate web traffic.
Jul 2 2013 7:30AM
OWASP Top 10 released for 2013

OWASP Top 10 released for 2013

Injection, broken authentication/session management and cross-site scripting make up the top three spots.
Jun 13 2013 10:11AM
Google ups bug bounty rewards

Google ups bug bounty rewards

Gmail bugs worth $5000.
Jun 12 2013 10:58AM
Twitter, Microsoft, LinkedIn, Yahoo open to hijacking

Twitter, Microsoft, LinkedIn, Yahoo open to hijacking

Cookie cockup permits account takeover.
Mar 22 2013 4:30PM
Kim Dotcom's Mega details first wave of security bugs

Kim Dotcom's Mega details first wave of security bugs

Netted through bug bounty program.
Feb 12 2013 7:25AM
Spammers stole Yahoo Xtra contact lists: exec

Spammers stole Yahoo Xtra contact lists: exec

Users smashed.
Feb 11 2013 5:47PM
Mega security bugs detailed

Mega security bugs detailed

Serious bugs found.
Feb 11 2013 1:28PM
PayPal's security works

PayPal's security works

PayPal's Andy Steingruebl knows security is not an insular task. By looking outside of its own walls, the company has taken the fight to the enemy, and helped everyone else in the process.
Feb 5 2013 9:25AM
XSS attacks boomed

XSS attacks boomed

Cross-site scripting (XSS) and SQL injection attacks remain the most prominent cyber attack method.
Jan 31 2013 9:40AM

Log In

Username:
Password:
|  Forgot your password?