- Security Fixes and Improvements
- By Catalin Cimpanu
- September 14th, 2016
Even Google Search Suffers from XSS Flaws
Google to security researcher: Nice catch!
- Security Fixes and Improvements
- By Catalin Cimpanu
- July 21st, 2016
WooCommerce WP Stores Affected by Image-Based XSS Vulnerability
Update to WooCommerce 2.6.3 as soon as possible
- Security
- By Catalin Cimpanu
- July 6th, 2016
Caja Toolkit Vulnerabilities Exposed Google Docs Domain to XSS Attacks
XSS issues found on Google Docs and Developers domains
- Security
- By Catalin Cimpanu
- April 16th, 2016
Researcher Identifies XSS Filter Bypass in Microsoft Edge
The issue is not fixed, Microsoft still working on it
- Security
- By Catalin Cimpanu
- March 3rd, 2016
Ad Code for Many Advertising Networks Vulnerable to Basic XSS Attacks
XSS payload jumps across pages via ad code
- Security
- By Catalin Cimpanu
- February 19th, 2016
JSF*** eBay XSS Bug Exploited in the Wild, Despite the Company's Fix
Attackers exploit eBay's lackluster security policy
- Security Fixes and Improvements
- By Catalin Cimpanu
- February 2nd, 2016
WordPress 4.4.2 Fixes SSRF and Open Redirect Security Issues
Automattic releases WP 4.4.2 to fix two security bugs
- Security
- By Catalin Cimpanu
- January 28th, 2016
Facebook Patches Critical XSS Bug That Led to Total Account Compromise
Facebook patched the issue in about six hours
- Security Fixes and Improvements
- By Catalin Cimpanu
- January 24th, 2016
XSS Bug in Magento Allows Attackers to Take Over Online Shops
The malicious code can be stored inside email address fields, and then executed in the Magento backend
- Security
- By Catalin Cimpanu
- January 19th, 2016
Yahoo Fixes Bug That Could Compromise Email Accounts When Opening an Email
Infosec researcher pockets $10,000 for his work
- Security
- By Catalin Cimpanu
- January 13th, 2016
Three XSS Bugs Found on Mozilla's Add-ons and Support Portals
Security researcher gets $2,500 for his effort
- Security
- By Catalin Cimpanu
- January 12th, 2016
eBay Bug Allows Hackers to Steal User Passwords
eBay XSS bug twice as dangerous if used in phishing scams
- Security Blog
- By Catalin Cimpanu
- January 6th, 2016
WordPress 4.4.1 Security Release Fixes XSS Bug
New WP release also adds support for the latest emojis
- Security
- By Catalin Cimpanu
- December 29th, 2015
AVG Forcibly Installs Vulnerable Chrome Extension That Exposes Users' Browsing History
AVG installs poorly written Chrome extension
- Security
- By Catalin Cimpanu
- December 16th, 2015
Four Network Management Systems Vulnerable to SQLi and XSS Attacks
Sysadmins of corporate networks, patch now or else!
- Security
- By Catalin Cimpanu
- December 8th, 2015
Script Kiddies Can Now Launch XSS Attacks Against IoT Wind Turbines
More security bugs continue to surface in IoT devices
- Security Blog
- By Catalin Cimpanu
- November 27th, 2015
Google Translate Website Affected by XSS Bug, Google Says It's OK
The bug is in the website's "translate a document" feature