- Security
- By Catalin Cimpanu
- February 28th, 2016
One in Ten Top Internet Sites May Be Vulnerable to CSRF and XSS Attacks
CloudFlare researchers finds that 10% of Alexa Top 1 Million sites use improper CORS security settings
- Advisories
- By Ionut Ilascu
- February 3rd, 2015
Same-Origin Policy Bypassed in Internet Explorer UPDATED
Proof-of-concept works with the latest builds of the browser
- Advisories
- By Ionut Ilascu
- December 27th, 2014
Exploit for Android Same Origin Policy Flaw Is Leveraged Against Facebook Users
BlackBerry app is used to steal profile access tokens
- Advisories
- By Ionut Ilascu
- October 2nd, 2014
New Same-Orgin Policy Vulnerability for Android Browser Is Demonstrated
Glitch has been fixed in Chrome but not in Android browser