Tags » Cross-site Scripting

Popular WordPress Plugin Addresses Critical Security Issue

The website security firm Sucuri last week disclosed a critical issue in Jetpack, a plugin used by more than 1 million users of the WordPress content management system. 182 more words

Security Advice

A brief overview of OWASP top 10 risks and what it takes to minimize them in java.(Part -2)

3.Cross-Site Scripting (XSS)

  • Overview

Attacker sends text based attack scripts that exploit the interpreter in the browser. Almost any source of data can be an attack vector, including internal sources such as data from the database. 391 more words

Web Security

WordPress Releases Security Updates

Earlier today, WordPress released version 4.3.1 of it’s popular self-hosted blogging tool/content management system (CMS, defined).

This update resolves 3 security issues:

The most serious issues was a cross-site scripting issue ( 174 more words

Security Advice

Unpatched WordPress Sites Used By Exploit Kits

The security firm Zscaler recently detected a large number of WordPress websites that are being used by exploit kits (exploit kits, defined) to deliver ransomware to the sites visitors. 595 more words

Security Advice

PayPal patches potential payment-stealing vulnerability

Yesterday it was a Facebook web-based Elevation of Privilege bug found by a Laxman Muthiyah, a bug-bounty hunter in India.

Today, it’s a PayPal Cross Site Scripting (XSS) flaw from a resarcher in Germany called Ebrahim Hegazy. 720 more words


WordPress Releases Security Updates

Earlier this week, WordPress released version 4.2.4 of its self-hosted blogging tool/content management system (CMS).

This update resolves 6 serious issues, which include: 296 more words

Security Advice

Wordpress 4.2.3 is out, update your website now

If you own a website then there’s a good chance – better than one in five – that it uses the WordPress Content Management System (CMS). 459 more words