30

Stories about: frame injection

Multiple Antivirus Websites XSSed in One Hit Websites belonging to no less than six antivirus vendors have been found to suffer from cross-site scripting weaknesses that could facilitate phishing attacks. Most of these companies were faced with similar flaws affecting their online resources in the past. A grey-hat hacker, going by the name of Methodman, who se... 11 May 2009 06:26 GMT Multiple MPAA and RIAA Websites XSSed Vektor, the hacker who played a joke on the Motion Pictures Association of America (MPAA) earlier this week by listing The Pirate Bay torrents on its own website via an XSS flaw, has disclosed that the Recording Industry Association of America (RIAA) suffers from a similar weakness. Additionally, more MPAA-controlled... 6 May 2009 06:12 GMT Intel Security Center Lacks Security A cross-site scripting flaw affecting the Intel Product Security Center website has been disclosed. Successful exploitation allows for rogue iframe injection, arbitrary redirection and session cookie hijacking. The Intel Security Center is home to advisories regarding security issues that affect Intel products. "Int... 28 February 2009 05:01 GMT