- Security Blog
- By Eduard Kovacs
- April 15th, 2014
RCE, Information Disclosure and XSS Flaws Found in PayPal Partner Program – Video
Security researcher Behrouz Sadeghipour is the one who reported the vulnerabilities
- Security
- By Eduard Kovacs
- April 5th, 2014
DDOS Attack Enabled by Persistent XSS Vulnerability on Top Video Content Provider’s Site
Security researchers from Incapsula have analyzed an interesting attack
- Security Blog
- By Eduard Kovacs
- February 20th, 2014
XSS Vulnerability Found in WikiLeaks’ Internal Search Engine
The security hole was addressed within hours after being discovered
- Security Blog
- By Eduard Kovacs
- February 15th, 2014
sIFR Vulnerability Impacts Adobe, BlackBerry, Visa, Amazon and Other Sites – Video
Adobe has fixed the issue and added to researcher's name to the "acknowledgements" page
- Security Blog
- By Eduard Kovacs
- January 22nd, 2014
World Economic Forum’s Website Plagued by XSS and Other Security Issues
The email addresses of thousands of people could have been obtained by spammers
- Security Blog
- By Eduard Kovacs
- January 16th, 2014
Security Patches Released for IP.Gallery 4.2.1 and 5.0.5
An XSS vulnerability related to SWF file uploads has been fixed
- Security Blog
- By Eduard Kovacs
- January 3rd, 2014
3 Vulnerabilities Fixed in Elgg 1.8.17
Users are advised to update their installations as soon as possible
- Security Blog
- By Eduard Kovacs
- December 30th, 2013
4 Vulnerabilities Fixed in MyBB 1.6.12
XSS and SQL Injection security holes have been addressed
- Security Blog
- By Eduard Kovacs
- December 16th, 2013
XSS Vulnerabilities Patched in IP.Board 3.3.x and 3.4.x
Users are advised by IPS to update their installations
- Security Blog
- By Eduard Kovacs
- December 4th, 2013
Important Security Fixes Included in Ruby on Rails 4.0.2 and 3.2.16
A total of five vulnerabilities have been identified
- Security Fixes and Improvements
- By Eduard Kovacs
- November 22nd, 2013
Google Password Recovery Flaws That Allowed Hackers to Hijack Accounts Fixed
Three types of vulnerabilities could have been exploited for spear phishing attacks
- Security Blog
- By Eduard Kovacs
- November 18th, 2013
Search Hints on HealthCare.gov Show a Lot of People Are Trying to Hack the Site
SQL and HTML commands are shown as suggestions in the search box
- Security Fixes and Improvements
- By Eduard Kovacs
- November 12th, 2013
Vulnerabilities in RunKeeper Allowed Cybercriminals to Run XSS Worm
Portuguese security researcher David Sopas is the one who found the flaws
- Security Blog
- By Eduard Kovacs
- November 12th, 2013
Reflected and Stored XSS Flaws Found in D-Link 2760N Routers
The company was notified on several occasions, but the vulnerabilities remain unfixed
- Hacking News
- By Eduard Kovacs
- November 8th, 2013
Anonymous Hackers Use XSS Attack to Deface Website of Singapore PM
A similar vulnerability was exploited against the presidency's website
- Security Blog
- By Eduard Kovacs
- October 12th, 2013
Researcher Rewarded with $5,000 / €3,700 for Stored XSS in Gmail for iOS
Roy Castillo found the issue in the “mail attachment” feature
- Yahoo News
- By Lucian Parfeni
- October 3rd, 2013
Yahoo Explains How the T-Shirts for Vulnerabilities Program Came to Be
It was an informal thank you from a Yahoo employee, not a company policy