security.nl

Cross-site scripting en spoofing lek in Opera

Er is een lek in de Opera browser ontdekt, waardoor een kwaadaardige website vertrouwelijke informatie kan stelen en cross-site scripting aanvallen kan uitvoeren. Het lek wordt veroorzaakt door een ...
heise online

Web security: With content security policy against cross-site scripting, part 1

Cross-site scripting (XSS) remains a serious threat, even though the most commonly used front-end frameworks come with many security functions as standard. Frameworks such as React or Angular offer ...
security.nl

Microsoft: 'Cross-Site Scripting is nog altijd een veelvoorkomende kwetsbaarheid'

Ondanks dat Cross-Site Scripting (XSS) inmiddels al ruim twintig jaar een bekende vorm van kwetsbaarheden is, blijft dit een belangrijk aandachtspunt. Microsoft meldt nog altijd veel meldingen van XSS ...
heise online

Cross-site scripting: vulnerabilities in pfSense enable admin cookie theft

Security researchers have discovered several vulnerabilities in the web administration interface of the pfSense open source firewall that enable cross-site scripting (XSS), i.e. the injection of ...
Bleeping Computer

Latest Cross-Site Scripting news

A declassified report from Romania's Intelligence Service says that the country's election infrastructure was targeted by more than 85,000 cyberattacks. Threat actors have been exploiting a ...
Dark Reading

CISA Urges Software Makers to Eliminate XSS Flaws

The US Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are urging organizations to focus on eliminating cross-site scripting vulnerabilities in ...