Cross-site Scripting | DataProtectionCenter.com

World Economic Forum’s Website Plagued by XSS and Other Security Issues

22

Jan

2014

Security researchers from High-Tech Bridge have identified a number of security issues on the official website of the World Economic Forum (WEF), the organization whose members are meeting these days in Davos, Switzerland. Initially, experts found a cross-site scripting (XSS) vulnerability on a subdomain. Later, they identified a couple of other XSS flaws on the […]

Category Security Written by Softpedia 0 Comments

Security Patches Released for IP.Gallery 4.2.1 and 5.0.5

16

Jan

2014

Invision Power Services has released patches to address a cross-site scripting (XSS) vulnerability in IP.Gallery 4.2.1 and 5.05. The XSS security hole is related to Shockwave Flash (SWF) file uploads. Because SWF files allow arbitrary script to execute within the context of the site they are hosted on, we are releasing a patch today which […]

Category Security Written by Softpedia 0 Comments

Mt.Gox Fixes Vulnerability That Might Have Been Exploited to Hijack Accounts

14

Jan

2014

Security researcher Egor Homakov has identified a couple of vulnerabilities on the website of Mt.Gox, one of the worlds largest Bitcoin exchange services, that could have been exploited to hijack user accounts. The expert says that his exploit leveraged a cross-site scripting (XSS) vulnerability in payments.mtgox.com, which he found in a matter of 5 minutes. […]

Category Security Written by Softpedia 0 Comments

The Latest in IT Security

Posts Tagged ‘Cross-site Scripting’

World Economic Forum’s Website Plagued by XSS and Other Security Issues

Security Patches Released for IP.Gallery 4.2.1 and 5.0.5

Mt.Gox Fixes Vulnerability That Might Have Been Exploited to Hijack Accounts

Categories

Featured

Archives

Latest Comments

About Us

Contact Us