Tags » XSS

Google Launches All-Out War on XSS

This is an important step in the battle against XSS vulnerabilities.  Kudos to Google on moving the ball forward and building better tools that will hopefully lead to better web code. 6 more words

Security News

Web Bluetooth: The New Hotness and Its Dangers

Google’s most recent Chrome browser, version 53, includes trial support for Web Bluetooth, and it’s like the Wild West! JavaScript code, served to your browser, can now connect directly to your Bluetooth LE (BTLE) devices, with a whole bunch of caveats that we’ll make clear below. 1,417 more words


Tumblr rejected fixing a security bug regarding to malicious images

Two days ago I found a security bug on the most popular blogging engine named Tumblr (to be owned by Yahoo). This bug enables hackers to upload the malicious images containing Javascript, HTML, Flash… In order to implement this, they can act as MIMT to tamper the response header content-type to text/html. 92 more words

Security Bug

Web Security - Server Security - ( Part 2 )

SYN Attack
SYN attack ( SYN flood ), is a form of denial of service attack. This is an aggressive form of attack traffic sufficient to request the legal system can not meet the state server in an attempt to consume resources, targeted system consecutive SYN requests ( SYN requests)…

Web Security – Server Security – ( Part 2 )


This CTF comes after the previous MMA CTF which got over on 5th September. One of the things that attracted me was that, it included XSS challenges. 168 more words


XSS game

Today we will have a look at the different approaches which can be taken to validate XSS. There is a game by google which can help us in understanding this. 194 more words

Application Security

XSS vulnerability security bug on the searchHist cookie of Samsung Website

8 months ago I found a XSS vulnerability security on Samsung website and later reported to Samsung Security Team. This bug allows hacker to inject malicious scripts via searchHist cookie. 186 more words

Security Bug