Zen Cart on Friday released an updated version of the popular online open source shopping cart application to address multiple Cross-Site Scripting (XSS) vulnerabilities. The security issues were discovered by Trustwave and are said to affect Zen Cart 1.5.4 and potentially prior versions. Zen Cart released version 1.5.5 to resolve the security flaws and also […]
Posts Tagged ‘cross site scripting’
29
Mar
2016
First, a quick review of Cross Site Scripting. Imagine that I want to get your website to serve up malicious content for me. Say, perhaps, that I want to alter your “Pay Now” page so that the customer sees a credit card payment form that comes from you, looks legitimate, seems secure… …but sends the […]
Category Vulnerabilities
0 Comments
Invision Power Services has released patches for IP.Board 3.3.x and 3.4.x in order to address a couple of cross-site scripting (XSS) vulnerabilities. Artur Czyż and indistic have been credited for finding and reporting the security holes. IP.Board takes precaution against cross site scripting issues by ensuring sensitive forms and buttons have a unique key in […]
Category Security
0 Comments
THURSDAY, APRIL 25, 2024
WHITE PAPERS
Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...
ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...
Latest Comments