Stories about: XSS  

Supermarket chain takes forever to fix XSS and CSRF bugs

Infosec researcher pockets $10,000 for his work

An intro into the five stages of a Web attack

Security researcher gets $2,500 for his effort

eBay XSS bug twice as dangerous if used in phishing scams

AVG installs poorly written Chrome extension

Drama in the pirating community as mods leave popular 1337x torrent portal and create their own clone

More security bugs continue to surface in IoT devices

The bug is in the website's "translate a document" feature

Hard to exploit, but a bountiful bug for hackers

Healthcare sector was also hit hard by hackers

ECMAScript 6 exposes sites to new XSS attack vectors

A third unauthorized redirect issue is still present

Mantis team fixes dangerous reflected XSS flaw

Researchers receives $3,000 for his efforts from Google

Attackers could gain admin rights over EBS applications

Automattic also sets up a protection system for older plugin versions, where the admin forget to upgrade it