Thousands of active WordPress plugins have been hit with a swathe of XSS vulnerabilities that could give attackers complete control of the site.
Tag Archives: XSS
Cookie-nabbing app could have served users side helping of XSS
A popular GDPR compliance WordPress plugin vendor has patched a flaw that rendered both site visitors and admins vulnerable to XSS attacks.
XSS security hole in Gmail’s dynamic email
The bug was fixed at least a month ago so users receiving dynamic email content have one less thing to worry about.
No surprises in the top 25 most dangerous software errors
An in-depth study of reported bugs has produced a list of the top 25 bug categories in software today – with some old familiar names topping the list.
WordPress 5.2.3 fixes new clutch of security vulnerabilities
WordPress version 5.2.3 has just appeared on the download pipe featuring half a dozen security fixes and software enhancements.
Google Chrome is ditching its XSS detection tool
Google’s throwing in the towel on XSS Auditor and putting its trust in Trusted Types instead.
Social engineering forum hacked, user data dumped on rival site
Social Engineered, dedicated to the “Art of Human Hacking,” was gutted, with 55,121 users’ details leaked on the same day as the hack.
Critical Adobe Flash player bug and more in June’s Patch Tuesday
June patch Tuesday features fixes from Adobe and Microsoft for critical flaws including a remote code vulnerability in Adobe Flash Player.
Flaw in popular PDF creation library enabled remote code execution
A researcher has discovered a high-severity bug in a popular PHP library used for creating PDFs.
WordPress 5.1.1 patches dangerous XSS vulnerability
Researchers have offered more detail on a recently patched vulnerability that would allow an attacker to take over a WordPress site.