No Chance for Token Theft: The Backend-for-Frontend Pattern

The Backend-for-Frontend pattern addresses security issues in Single-Page Applications by moving token management back to the ...
GitHub

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist.

the xss module: 8.2 MB/s xss() function from module [email protected]: 4.4 MB/s For test code please refer to benchmark directory. Notes: please don't use the URL https ...
Bleeping Computer

Phishing campaign uses UPS.com XSS vuln to distribute malware

A clever UPS phishing campaign utilized an XSS vulnerability in UPS.com to push fake and malicious 'Invoice' Word documents. The phishing scam was first discovered by security research Daniel ...
GitHub

Client_DOM_Stored_XSS @ /webgoat-lessons/cross-site-scripting/src/main/resources/js/stored-xss.js

The method Lambda embeds untrusted data in generated output with append, at line 40 of /webgoat-lessons/cross-site-scripting/src/main/resources/js/stored-xss.js. This ...

Monitoring Software Checkmk: Update Closes Critical Cross-Site Scripting gap

Current versions of the monitoring software Checkmk close a cross-site scripting vulnerability classified as a critical risk.
Dark Reading

Twitter Attack An XSS Wake-Up Call

The high-profile attack that hit the Twitter website early this morning and affected tens to hundreds of thousands of Twitter users serves as a reminder of just how the pervasive but often-dismissed ...
Business Insider

Forbes Exploited: XSS Vulnerabilities Allow Phishers to Hijack Sessions & Steal Logins

Here's another delicious Byte. Ucha Gobejishvili, a Georgian Security Researcher under the handle of longrifle0x, discovered two cross site scripting (XSS) vulnerabilities on the official website of ...
Dark Reading

Law Enforcement Cracks Down on XSS — but Will It Last?

Law enforcement notched a significant victory against the cybercrime economy this week with the takedown of the notorious forum XSS and the arrest of its suspected administrator. Europol said on ...