- Security Blog
- By Catalin Cimpanu
- October 9th, 2015
Security Flaw Allowed Attackers to Take Control Over PCs Connected to a Huawei 4G USB Modem
Huawei fixed the issue and has prepared new firmware
- Security Blog
- By Catalin Cimpanu
- October 9th, 2015
Security Researcher Disappointed with How an XSS Bug Was Fixed in Drupal 8
Researcher finds reflected XSS bug in Drupal 8
- Security
- By Catalin Cimpanu
- October 9th, 2015
Backdoor in Cisco's WebVPN Service Allows Hackers to Steal Corporate Passwords
The backdoor was being loaded via a hidden XSS attack
- Security
- By Catalin Cimpanu
- October 8th, 2015
Huawei 3G Router Goes Unnoticed All These Years Sporting XSS, CSRF, and DoS Bugs
Huawei's B260A 3G router was a complete mess
- Security Fixes and Improvements
- By Catalin Cimpanu
- October 2nd, 2015
Stored XSS in Jetpack Plugin Allows Attackers to Run Code in the WordPress Backend
XSS bug affected Jetpack's custom contact form module
- Security
- By Catalin Cimpanu
- September 22nd, 2015
Attackers Could Have Wiped Mobile Devices in an SAP Afaria Network with One SMS
They could have also taken control over connected devices in an Afaria network using a simple stored XSS
- Security Blog
- By Catalin Cimpanu
- September 19th, 2015
GitHub Implements Subresource Integrity to Better Protect Itself from XSS Attacks
Company opts to prevent rather than fix security problems
- Security
- By Catalin Cimpanu
- September 17th, 2015
Microsoft Patches XSS Vulnerability in SharePoint 2013
XSS flaw allows remote authenticated users to inject arbitrary scripts or HTML via improperly sanitized input fields
- Security
- By Catalin Cimpanu
- September 15th, 2015
WordPress 4.3.1 Available for Download, Fixes Two XSS Vulnerabilities
WP 4.3.1 also fixes a privilege escalation issue
- Security
- By Catalin Cimpanu
- September 3rd, 2015
Netflix Open Sources XSS Flaw Detection System That Works Across Applications
Security experts can now debug broad-ranging XSS bugs
- Security
- By Catalin Cimpanu
- September 2nd, 2015
PayPal XSS Vulnerability Found, Fixed Before Being Exploited
The stored XSS (fixed now) affected Firefox users only
- Security Blog
- By Catalin Cimpanu
- September 2nd, 2015
Infographic: How XSS Attacks Work
6% of the top 1000 websites have been victims of XSS attacks
- Security
- By Catalin Cimpanu
- August 27th, 2015
PayPal Fixes XSS Flaw That Allowed Access to Unencrypted Credit Card Details
White hat hacker earns himself $750 / €665
- Security
- By Catalin Cimpanu
- August 4th, 2015
Popcorn Time Vulnerable to XSS Attacks and Remote Code Execution
Attackers can easily access and read the user's local files
- Incidents
- By Catalin Cimpanu
- June 19th, 2015
SAP HANA Databases Vulnerable to XSS and SQL Injections
SAP encryption issues exposed client credentials
- Security Fixes and Improvements
- By Ionut Ilascu
- May 26th, 2015
Synology Products Affected by Multiple Vulnerabilities
Manufacturer releases updates to fix the problems
- Security
- By Ionut Ilascu
- May 18th, 2015
Researcher Reports Vulnerabilities in SoundCloud Service
SoundCloud is sufficiently popular for potential abuse