Tag: XSS
-
Joomla! patches XSS flaws that could lead to remote code execution
On February 20, Joomla! posted details about four vulnerabilities it had fixed in its Content Management System (CMS), and one in the …
-
Roundcube webmail XSS vulnerability exploited by attackers (CVE-2023-43770)
CVE-2023-43770, a vulnerability in the Roundcube webmail software that has been fixed in September 2023, is being exploited by attackers in …
-
Over 2M jobseekers’ data compromised in SQL injection, XSS attacks
More than 2 million jobseekers’ personal data and email addresses have been exfiltrated by the ResumeLooters threat operation following SQL …
-
New ResumeLooters Gang Targets Job Seekers, Steals Millions of Resumes
Since emerging in November 2023, ResumeLooters has exploited SQL injection and XSS vulnerabilities to compromise over 65 job-seeking …
-
Critical XSS vulnerability in Zimbra exploited in the wild (CVE-2023-34192)
A critical cross site scripting (XSS) vulnerability (CVE-2023-34192) in popular open source email collaboration suite Zimbra is being …
-
Zimbra Collaboration Suite warning: Patch this 0-day right now (by hand)!
Popular collaboration product Zimbra has warned customers to apply a software patch urgently to close a security hole that it says “could …
-
XSS Vulnerabilities Found in Microsoft Azure Cloud Services
Microsoft quickly issued patches for the two security issues, which could allow unauthorized access to cloud …
-
Researchers Uncover XSS Vulnerabilities in Azure Services
Cybersecurity experts at Orca Security have identified two critical cross-site scripting (XSS) vulnerabilities in Microsoft Azure services. …
-
More than 2M sites impacted by WordPress plugin with reflected XSS bug
Major commercial organizations are having their networks infiltrated by the new Cactus ransomware operation through the exploitation of VPN …
-
Now-patched Azure vulnerability opened the door to remote code execution
Cloud cybersecurity startup Orca Security Ltd. today detailed the discovery of a previously unknown vulnerability in Microsoft Corp.’s …
-
The evolving sophistication of social engineering attacks
By Anas Baig, product manager and cyber security expert with Securiti. A social engineering attack is a type of cyber attack in which a …
-
How SAST Will Improve Your Overall Security: Intro
Application testing is a process that helps ensure the quality and safety of your software applications, whether the app is for a mobile or …
●●●