Security News

WordPress Content Injection Flaw Makes XSS Bug More Severe (SecurityWeek)
2017-03-15 10:39

WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)
2017-03-14 15:43

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks.

Siemens RUGGEDCOM NMS Equipment Vulnerable to CSRF, XSS (Threatpost)
2017-02-28 21:59

Siemens line RUGGEDCOM NMS products suffers from vulnerabilities that could allow an attacker to perform administrative actions.

jQuery Mobile Can Expose Websites to XSS Attacks (SecurityWeek)
2017-02-09 18:52

Valve Patches Trivial XSS Bug in Steam (Threatpost)
2017-02-08 17:00

A cross-site scripting vulnerability on the Steam gaming platform has been patched. The flaw could be exploited by simply viewing a crafted profile.

XSS marks the spot: Steam vuln dangles potential phishing line (The Register)
2017-02-08 13:36

IBM Patches XSS Flaws in InfoSphere BigInsights (SecurityWeek)
2017-01-30 13:20

WordPress patches dangerous XSS, SQL injection bugs (ZDNet)
2017-01-30 05:20

WordPress 4.7.2 Update Fixes XSS, SQL Injection Bugs (Threatpost)
2017-01-27 20:19

WordPress fixed three security issues, including a XSS and SQL injection, with WordPress 4.7.2 this week.

WordPress 4.7.1 Fixes CSRF, XSS, PHPMailer Vulnerabilities (Threatpost)
2017-01-12 17:38

A new WordPress update, pushed this week, resolves eight security issues, including a handful of XSS and CSRF bugs.