Software industry risks and SQL injection trends
With the trend of targeted cyber attacks along with the exploitation of common vulnerabilities such as SQL injection, it is clear that the core software infrastructure of …
Vulnerabilities in common web applications escalate
A new Cenzic report reveals widespread Web application vulnerabilities, with 2,155 discovered – a third of which have both no known solution and an exploit code publicly …
Facebook XSS flaw misused for automatic Wall posting
A currently unpatched XSS vulnerability in the mobile API version of Facebook is currently being exploited to post messages to users’ Walls, which serve as a gateway to …
Twitter tests XSS attack prevention on its mobile website
Twitter has been testing and has now implemented Content Security Policy – a new standard developed by Mozilla to block cross site scripting (XSS) attacks – on its …
Amazon Seller Central vulnerable to XSS
To demonstrate that the Amazon Seller Central password reset page is vulnerable to an XSS attack, a regular submitter to the XSSed.com website has injected an iFrame tag that …
Featured news
Resources
Don't miss
- AirDrop and Quick Share vulnerabilities affect protocols on five billion devices as fixes begin
- Vulnerability reports are arriving faster than GitHub can review them
- JSP webshells being dropped on unpatched PTC Windchill instances
- Mozilla warns of indirect prompt injection risk in AI coding agents
- DarkMoon: Open-source AI pentesting platform