Security News

Siemens RUGGEDCOM NMS Equipment Vulnerable to CSRF, XSS (Threatpost)
2017-02-28 21:59

Siemens line RUGGEDCOM NMS products suffers from vulnerabilities that could allow an attacker to perform administrative actions.

jQuery Mobile Can Expose Websites to XSS Attacks (SecurityWeek)
2017-02-09 18:52

Valve Patches Trivial XSS Bug in Steam (Threatpost)
2017-02-08 17:00

A cross-site scripting vulnerability on the Steam gaming platform has been patched. The flaw could be exploited by simply viewing a crafted profile.

XSS marks the spot: Steam vuln dangles potential phishing line (The Register)
2017-02-08 13:36

IBM Patches XSS Flaws in InfoSphere BigInsights (SecurityWeek)
2017-01-30 13:20

WordPress patches dangerous XSS, SQL injection bugs (ZDNet)
2017-01-30 05:20

WordPress 4.7.2 Update Fixes XSS, SQL Injection Bugs (Threatpost)
2017-01-27 20:19

WordPress fixed three security issues, including a XSS and SQL injection, with WordPress 4.7.2 this week.

WordPress 4.7.1 Fixes CSRF, XSS, PHPMailer Vulnerabilities (Threatpost)
2017-01-12 17:38

A new WordPress update, pushed this week, resolves eight security issues, including a handful of XSS and CSRF bugs.

Yahoo Mail XSS Bug Worth Another $10K to Researcher (Threatpost)
2016-12-09 13:00

Finnish security researcher Jouko Pynnonen found a second stored cross-site scripting vulnerability in Yahoo Mail in less than a year, both of which earned him $10,000 bug bounties.

Google tackles XSS scripting flaws with new developer tools (ZDNet)
2016-09-28 08:36