Please turn on your JavaScript for this page to function normally.
Vulnerabilities in common web applications escalate
A new Cenzic report reveals widespread Web application vulnerabilities, with 2,155 discovered – a third of which have both no known solution and an exploit code publicly …
Facebook XSS flaw misused for automatic Wall posting
A currently unpatched XSS vulnerability in the mobile API version of Facebook is currently being exploited to post messages to users’ Walls, which serve as a gateway to …
Twitter tests XSS attack prevention on its mobile website
Twitter has been testing and has now implemented Content Security Policy – a new standard developed by Mozilla to block cross site scripting (XSS) attacks – on its …
Amazon Seller Central vulnerable to XSS
To demonstrate that the Amazon Seller Central password reset page is vulnerable to an XSS attack, a regular submitter to the XSSed.com website has injected an iFrame tag that …
Featured news
Resources
Don't miss
- Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028)
- Skyhawk Security brings preemptive cloud app defense to RSAC 2025
- Understanding 2024 cyber attack trends
- Exposed and unaware: The state of enterprise security in 2025
- Coaching AI agents: Why your next security hire might be an algorithm