Security News

SAP Patches Critical Code Injection, XSS Vulnerabilities (SecurityWeek)
2016-06-15 17:57

Blind XSS Vulnerability Allowed Compromise of GoDaddy Support (SecurityWeek)
2016-05-10 19:04

WordPress Patches SOME, XSS Flaws in Version 4.5.2 (Threatpost)
2016-05-10 13:00

WordPress has issued a security release, patching a SOME vulnerability in Plupload, and a reflected cross-site scripting bug in MediaElement.js.

GoDaddy plugs account hijack XSS vulnerability (The Register)
2016-05-10 05:19

GoDaddy Addresses Blind XSS Vulnerability Affecting Online Support (Threatpost)
2016-05-09 19:46

Domain registrar GoDaddy fixed a vulnerability affecting systems used by its customer support agents that could have been abused to take over, modify or delete accounts.

Stored XSS Flaw Patched in bbPress WordPress Plugin (SecurityWeek)
2016-05-04 15:33

Adobe Patches DOM-XSS Flaw in Analytics AppMeasurement for Flash Library (Threatpost)
2016-04-21 17:08

Adobe today patched a DOM-based cross-site scripting vulnerability in the Adobe Analytics AppMeasurement for Flash library.

SAP Patches XSS, DoS Vulnerabilities (SecurityWeek)
2016-04-13 15:01

Online shopping cart Zen Cart patches critical XSS flaws (ZDNet)
2016-03-29 10:45

Popular Shopping Cart App Plugs Dozens of XSS Vulnerabilities (Threatpost)
2016-03-28 21:13

Researchers found 50 cross site scripting vulnerabilities in the popular open source shopping cart application Zen Cart.