Dark Reading

Twitter Hit With Another Cross-Site Scripting Vulnerability

Over this Labor Day weekend developers at Twitter had to do a bit of additional labor that they should have previously completed - and that's to close a potentially dangerous cross-site scripting (XSS ...
Computer Weekly

Cross-site scripting a top vulnerability, hackers find

Cross-site scripting (XSS) is the most commonly exploited vulnerability, according to HackerOne, currently the largest platform aimed at connecting organisations with a community of white hat hackers ...
CSOonline

PayPal Plugs Cross-site Scripting Hole That Sidestepped Stronger Security

The vulnerability's potential impact was even more serious than usual because the PayPal page was guarded by an Extended Validation (EV) SSL certificate. Online payment provider PayPal has patched a ...
Macworld

PayPal plugs cross-site scripting vulnerability

Editor’s Note: This story is excerpted from Computerworld. For more Mac coverage, visit Computerworld’s Macintosh Knowledge Center. Online payment provider PayPal has patched a critical cross-site ...
Dark Reading

Acunetix Offers Free Web Vulnerability Scanner

LONDON -- Acunetix today launched a free edition of its popular web vulnerability scanner, which allows companies to check for cross site scripting vulnerabilities in their websites at no charge. The ...
Threat Post

Unpatched Vulnerability on Wix.com Puts Millions of Sites at Risk

Wix websites are vulnerable to reflective DOM cross-site scripting attack that could give attackers control of user’s websites. Update Cloud-based web host Wix.com is vulnerable to a DOM-based ...
Searchenginejournal.com

WordPress Elementor Vulnerability Affects +7 Million

Security researchers at Wordfence discovered a vulnerability on sites built with Elementor. The exploit is a type designated as a Stored Cross-site Scripting (XSS) vulnerability. It has the potential ...