All posts tagged "XSS"
-
2.3KVulnerabilitiesMicrosoft Edge Bug Could’ve Let Hackers Steal Your Secrets for Any Site
Microsoft last week rolled out updates for the Edge browser with fixes for two security issues, one of which concerns a security...
-
395Cyber EventsHow I Discovered My First Vulnerability
I have read a couple of books recently about different vulnerabilities in order to be able to better protect my projects/websites. Today,...
-
308VulnerabilitiesCritical vulnerabilities in phpMyAdmin
Admins of thousands of websites are waiting for the update launching According to reports of specialists in digital forensics from the...
-
269VulnerabilitiesVulnerabilities in DJI drone manufacturer
Security bugs could expose details about drone owners Researchers at a cybersecurity and digital forensics firm identified a couple vulnerabilities in the...
-
187VulnerabilitiesOpsview publishes new vulnerabilities report
The flaws could allow code execution Ethical hacking specialists have recently published a vulnerability report jointly with the enterprise systems monitoring software provider Opsview. The...
-
243VulnerabilitiesCritical vulnerabilities present in smart city systems
Researchers have discovered countless zero-day vulnerabilities that can be used to disrupt critical systems Experts in enterprise network security from the International...
-
195ArticlesPassword Managers can be exploited using Web Trackers
This type of abusive conduct is possible because of a configuration flaw in the login handlers included with all browsers, login managers...
-
172VulnerabilitiesStealing Amazon EC2 Keys via an XSS Vulnerability
On a recent engagement, our testers were faced with a single page web application which was used to generate PDF documents. This...
-
202How ToWeb Applications Attacks: Reflected Cross-site Scripting
-
227VulnerabilitiesTrend Micro ServerProtect Contains Multiple Critical Arbitrary Code Execution Vunerabilities including XSS and CSRF
A Trend Micro product ServerProtect for Linux 3.0 Contain 6 Major and very critical vulnerabilities Discovered. ServerProtect Protecting against viruses, rootkits, and...
-
219VulnerabilitiesSQL Injection & more via XSS in pgAdmin 4
This is the story of how I found and exploited XSS (content injection) in the pgAdmin4 1.3 desktop client. (Before I get...
-
328VulnerabilitiesWordPress 4.7.3 released with patch for six security issues, but not for CSRF
Most expected WordPress 4.7.3 is now available for update. This security update covers six security issues that exists with WordPress version 4.7.2. Security issues:...
-
257How Toxsscrapy – XSS/SQLi Spider
xsscrapy, a tool, that examines given URL to find cross-site scripting and some SQL injection vulnerabilities. Python xsscrapy Linux operating system...
-
238VulnerabilitiesGoogle Releases Two Chrome Extensions for XSS Discovery and Mitigation
Google says it paid over $1.2 million just for XSS bugs. Google released two new tools called CSP Evaluator and CSP Mitigator...
-
188IncidentsHow to hack Google FR by exploiting a cross-site scripting flaw
The security expert Issam Rabhi (@issam_rabhi) has discovered a cross-site scripting vulnerability in Google France. The giant already fixed it. A security...
-
205VulnerabilitiesHackers Prefer File Upload, XSS, and SQLi Bugs When Attacking WordPress Sites
WordPress is a free, open source content management system (CMS) for creating websites, and is considered to be the most popular blogging system...
-
226VulnerabilitiesA Flaw on eBay’s Site Allowed Hackers To Steal User’s Passwords
A critical bug on eBay’s website opened the door for malicious hackers to create fake login pages to steal passwords and harvest...
-
193VulnerabilitiesLinkedIn patches serious persistent XSS vulnerability
Developers at LinkedIn fixed a persistent cross site scripting vulnerability in the social network this week that could have been exploited to...
-
192VulnerabilitiesWordPress Fixes Critical Stored XSS Error in Akismet
Developers at Automattic, the parent company behind the blogging platform WordPress, fixed a nasty stored cross-site scripting error this week in Akismet,...
-
253VulnerabilitiesSecurity Researcher Disappointed with How an XSS Bug Was Fixed in Drupal 8
Researcher finds reflected XSS bug in Drupal 8.Drupal 8 isn’t even out yet but security experts have been hard at work auditing...
-
191VulnerabilitiesWordPress Jetpack Plugin Patched Against Stored XSS Vulnerability
After a few critical bugs were recently discovered and patched in the core WordPress engine—a rarity with WordPress-related security issues—order has apparently...
