30

Stories about: Cross-Origin Resource Sharing

HTML5 Can Make Older Code Insecure Researchers warn that HTML5 support might pose serious security problems for websites by making code formerly thought secure, vulnerable. A critical and undetectable cross-site scripting hole on Facebook was used to demonstrate the concept.“HTML 5 does not do much to solve browser security issues. In fact it ac... 19 July 2010 04:48 GMT Firefox 3.5 and IE8 Abused to Spy Inside Intranets Two security researchers have devised proof-of-concept "ping sweeping" attacks, which leverage on the new Cross-Origin Resource Sharing implementation in Firefox 3.5, as well as the one already existing in Internet Explorer 8. A design weakness can allow attackers to remotely map Web servers on an internal network by... 22 July 2009 05:34 GMT