- Security
- By Sergiu Gatlan
- December 13th, 2018
WordPress Fixes Critical PHP Object Injection Issue Leading to Code Execution
Information disclosure bug with high CVSS score also patched
- Security
- By Sergiu Gatlan
- October 16th, 2018
Info of 685 Million Users at Risk Because of Multiple Branch.io XSS Flaws
The DOM-based XSS vulnerabilities are now fixed
- Security
- By Gabriela Vatu
- January 30th, 2017
WordPress Rolls Out Major Security Patch, Fixes XSS and SQL Injection Bugs
New WordPress update comes just a few weeks after the latest
- Security
- By Catalin Cimpanu
- September 27th, 2016
Google Releases Two Chrome Extensions for XSS Discovery and Mitigation
Google says it paid over $1.2 million just for XSS bugs
- Security Fixes and Improvements
- By Catalin Cimpanu
- September 14th, 2016
Even Google Search Suffers from XSS Flaws
Google to security researcher: Nice catch!
- Advisories
- By Catalin Cimpanu
- September 9th, 2016
SNMP Port Scans Increase Following Rapid7 Vulnerability Report
High-end NMS products affected by several security issues
- Security Fixes and Improvements
- By Catalin Cimpanu
- September 8th, 2016
WordPress 4.6.1 Security Update Is Out, Time to Update Peeps
WP 4.6.1 fixes two cross-site scripting (XSS) bugs
- Security Fixes and Improvements
- By Catalin Cimpanu
- August 26th, 2016
Firefox Adds Protection for MIME Confusion Attacks
New MIME confusion attack mitigations added to Firefox 50
- Security
- By Catalin Cimpanu
- July 24th, 2016
110 Rogue Servers Found on Tor Network During 72-Day Experiment
A quarter of these servers attempted to carry out SQL injection and XSS attacks on fellow Tor relays
- Security Fixes and Improvements
- By Catalin Cimpanu
- July 21st, 2016
WooCommerce WP Stores Affected by Image-Based XSS Vulnerability
Update to WooCommerce 2.6.3 as soon as possible
- Security Fixes and Improvements
- By Catalin Cimpanu
- July 11th, 2016
Website Takeover Issue Fixed in WordPress' Most Popular Plugin
All in One SEO Pack affected by stored XSS issue
- Security
- By Catalin Cimpanu
- July 8th, 2016
Zero-Days in BMW Web Portal Let Hackers Tamper with Customer Cars
BMW was notified in February but has failed to issue a patch
- Security
- By Catalin Cimpanu
- July 6th, 2016
Caja Toolkit Vulnerabilities Exposed Google Docs Domain to XSS Attacks
XSS issues found on Google Docs and Developers domains
- Security Fixes and Improvements
- By Catalin Cimpanu
- June 22nd, 2016
WordPress 4.5.3 Fixes Bug That Allowed Password Change via Stolen Cookies
WordPress team fixes 8 security issues in total
- Security
- By Catalin Cimpanu
- June 14th, 2016
Average Bug Bounty Payouts Are Increasing
XSS vulnerabilities accounted for two-thirds of all bug submissions on the Bugcrowd bug bounty platform
- Security
- By Catalin Cimpanu
- June 12th, 2016
SQL Injections and LFI Accounted for over Three-Quarters of All Web Attacks
Brazil rises as second attack source thanks to new cloud data centers opened in the country last year
- Security Fixes and Improvements
- By Catalin Cimpanu
- May 28th, 2016
Stored XSS in Jetpack Plugin Puts over One Million WordPress Sites at Risk
Users should update to Jetpack 4.0.3 as soon as possible