Security News

Attackers target new XSS in millions of WordPress sites (The Register)
2015-05-07 07:10

A Year Later, XSS Vulnerability Still Exists in eBay (Threatpost)
2015-04-29 18:27

A potentially dangerous XSS vulnerability has existed in eBay for more than a year and it doesn’t appear the company is a rush to fix the issue.

Stored XSS bug in WordPress, researchers advise to disable comments (SC Magazine)
2015-04-27 21:48

Klikki Oy - WordPress 4.2 Stored XSS (Reddit)
2015-04-27 18:48

WordPress vulnerable to yet another, still to be patched XSS flaw (Help Net Security)
2015-04-27 13:18

The latest WordPress version (4.2, released on Thursday) and several earlier ones are vulnerable to a stored cross-site scripting (XSS) vulnerability that can be exploited to inject JavaScript in Word...

Why Groupon refused to pay a security researcher who discovered serious XSS bugs (Yahoo Security)
2015-04-25 01:02

Popular WordPress plugins vulnerable to XSS (Help Net Security)
2015-04-22 10:09

At least 17 WordPress plugins - and likely even more of them - have been found vulnerable to cross-site scripting (XSS) flaws that could allow attackers to inject malicious code in the browsers of the...

SearchBlox Fixes XSS, File Upload Flaws (Threatpost)
2015-04-15 14:32

SearchBlox, a provider of enterprise search technology, has patched several serious vulnerabilities in its flagship product, including cross-site scripting, cross-site request forgery and other...

Peristent XSS Vulnerability Plagues WordPress Plugin (Threatpost)
2015-04-07 18:37

A persistent cross-site scripting (XSS) vulnerability exists in some versions of a popular WordPress caching engine plugin.

I helped Amazon.com find an XSS hole and all I got was this lousy t-shirt (The Register)
2015-03-26 09:38