Security News

Verizon Messages App Allowed XSS Attacks Over SMS (SecurityWeek)
2017-05-22 14:48

WordPress Fixes CSRF, XSS Bugs, Announces Bug Bounty Program (Threatpost)
2017-05-18 18:17

WordPress fixed six vulnerabilities with version 4.7.5 and announced a bug bounty program with HackerOne this week.

Google's PHP API client has XSS vulnerability (The Register)
2017-05-12 05:18

ColdFusion Hotfix Resolves XSS, Java Deserialization Bugs (Threatpost)
2017-04-25 16:36

Adobe released an important security hotfix for several versions of Coldfusion, resolving two bugs, Tuesday morning.

Splunk Patches Information Theft and XSS Flaws (SecurityWeek)
2017-04-03 13:48

DOM-based XSS in the Wild (Appsec Streetfighter Blog)
2017-03-29 17:48

New Attack Combines Self-XSS and Clickjacking (SecurityWeek)
2017-03-20 15:03

quot;DOM-based XSS in the Wildquot; (Appsec Streetfighter Blog)
2017-03-16 07:33

WordPress Content Injection Flaw Makes XSS Bug More Severe (SecurityWeek)
2017-03-15 10:39

WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)
2017-03-14 15:43

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks.