xss

RSA11: Drive by download attacks get their P-plates

RSA11: Drive by download attacks get their P-plates

State of website security worse than you may expect.
Dan Raywood Feb 21 2011 10:37AM Security
Security risk spotted on Qantas site

Security risk spotted on Qantas site

Mysterious XSS vulnerability could be bad news.
Brett Winterford Nov 30 2010 6:55AM Security
Google-owned social network sees 400,000 users hit by XSS attack

Google-owned social network sees 400,000 users hit by XSS attack

Attack on Orkut required no user interaction.
Dan Raywood Sep 29 2010 1:01PM Security
Vic highschooler sparks Twitter’s onMouseOver woes

Vic highschooler sparks Twitter’s onMouseOver woes

Javascript command used to distribute malware.
Liz Tay Sep 22 2010 3:43PM Security
Twitter.com plagued with malware

Twitter.com plagued with malware

Update: Microblogging site fixes flaw.
Brett Winterford Sep 22 2010 12:01AM Security
Researcher demonstrates Twitter XSS vulnerability

Researcher demonstrates Twitter XSS vulnerability

Vulnerability could allow an attacker to take over users' accounts.
Angela Moscaritolo Jun 25 2010 12:23PM Security
Microsoft to patch Internet Explorer XSS filter in June

Microsoft to patch Internet Explorer XSS filter in June

Malicious code injection possible.
Dan Raywood Apr 27 2010 2:17PM Security
Apache.org hit by targeted XSS attack

Apache.org hit by targeted XSS attack

Users advised to change their passwords.
Angela Moscaritolo Apr 14 2010 10:54AM Security
Google patches XSS hole in Buzz

Google patches XSS hole in Buzz

Common flaw strikes again.
Angela Moscaritolo Feb 18 2010 12:07PM Security
Researcher demonstrates Pentagon XSS vulnerability

Researcher demonstrates Pentagon XSS vulnerability

Though users more at risk than data.
Dan Kaplan Dec 9 2009 11:10AM Security
Disability site vulnerable to XSS attack

Disability site vulnerable to XSS attack

Betsie under threat.
Dan Raywood Nov 10 2009 11:09AM Security
Reddit succumbs then cleans up from XSS attack

Reddit succumbs then cleans up from XSS attack

Reddit is the latest Web 2.0 site to be slowed by a cross-site scripting attack.
Dan Kaplan Sep 29 2009 9:16AM Security
Twitter among web apps affected by patched XSS bug

Twitter among web apps affected by patched XSS bug

Flaw lies in "escaping code".
Dan Kaplan Sep 7 2009 3:46PM Security
Twitter XSS vulnerability not yet fixed

Twitter XSS vulnerability not yet fixed

Claims patch doesn't work.
Angela Moscsaritolo Aug 27 2009 10:43AM Security
XSS vulnerabilities discovered in Facebook, closed quickly

XSS vulnerabilities discovered in Facebook, closed quickly

Researchers this week released proof-of-concept code for a number of cross-site scripting flaws on Facebook, but the social networking site said it closed the vulnerabilities within hours.
Angela Moscaritolo Dec 17 2008 9:34AM Security
Website developers can protect users from internet-borne threats

Website developers can protect users from internet-borne threats

Protecting users from internet-borne threats falls on trusted websites, says Overstock's Sam Peterson. Dan Kaplan reports.
Dan Kaplan Sep 26 2008 12:22PM Security
EV SSL and XSS: Mixing apples and oranges

EV SSL and XSS: Mixing apples and oranges

When individuals lack an understanding of the specifics of a technology, it is very easy to make inaccurate conclusions on how any two technologies are related -- if they are related at all
Tim Callan, vice president, SSL product marketing, Ver May 21 2008 11:28AM Security
XSS vulnerability found in McAfee HackerSafe sites

XSS vulnerability found in McAfee HackerSafe sites

For the second time this year, a security researcher has found websites certified as McAfee HackerSafe that contain vulnerabilities.
Sue May 1 2008 10:36AM Security
Microsoft Internet Explorer XSS vulnerabilty could attract phishers

Microsoft Internet Explorer XSS vulnerabilty could attract phishers

Microsoft's Internet Explorer 7 (IE7) is vulnerable to cross-site scripting that could allow attackers to spoof a trusted site to launch a phishing attack.
Dan Kaplan Mar 16 2007 6:29AM Security
XSS is a large problem

XSS is a large problem

Seen as an end-user issue, cross-site scripting has been ignored for too long. Now attacks are on the rise.
Ken Munro Feb 28 2007 2:27PM Security

Log In

  |  Forgot your password?