xss | DataProtectionCenter.com – Tech and Security

Tackling cross-site request forgery (CSRF) on company websites

23

Mar

2021

Everyone with half a mind for security will tell you not to click on links in emails, but few people can explain exactly why you shouldn’t do that (they will usually offer a canned ‘hackers can steal your credentials if you do’ explanation) Cross-Site Request Forgery (CSRF) is that reason. Clicking on that link means […]

Category Email security Security Written by Feedproxy 0 Comments

Adobe Patches 9 Vulnerabilities in Magento

20

Oct

2020

The vulnerabilities rated critical have been described as a “file upload allow list bypass” that can lead to arbitrary code execution, and an SQL injection flaw that can provide an attacker read or write access to the targeted store’s database. However, exploitation of these vulnerabilities requires admin privileges, which means they need to be chained […]

Category Threats & Malware Vulnerabilities Written by Feedproxy 0 Comments

Researcher Details Google Maps Vulnerability That Earned Him $10,000

09

Sep

2020

Israel-based security researcher Zohar Shachar discovered the vulnerability in April 2019 and it was patched a few weeks later, but he only now disclosed his findings. The flaw affected the Google Maps feature that allows users to create their own map. These maps can be exported in various formats, including Keyhole Markup Language (KML), a […]

Category Threats & Malware Vulnerabilities Written by Feedproxy 0 Comments

The Latest in IT Security

Posts Tagged ‘xss’

Tackling cross-site request forgery (CSRF) on company websites

Adobe Patches 9 Vulnerabilities in Magento

Researcher Details Google Maps Vulnerability That Earned Him $10,000

Categories

Featured

Archives

Latest Comments

About Us

Contact Us