XSS vulnerabilities (Page 2)

3 critical reflected cross-site scripting (XSS) flaws found on Facebook

On: June 22, 2020

Despite investing millions of dollars in security, Facebook reports the continued discovery of vulnerabilities that could expose its users’ information. A vulnerability assessment specialist revealed the finding of three cross-siteRead More →

Multiple Cross-site scripting XSS vulnerabilities found in Joomla

On: June 3, 2020

In: Vulnerabilities

A group of pentest training specialists has reported the finding of multiple vulnerabilities in Joomla, one of the most widely used content management systems (CMS) in the world. According toRead More →

XSS vulnerability in jQuery allows hackers to deface your website easily with one line of code

On: May 26, 2020

In: Vulnerabilities

A team of specialists from a malware analysis course has revealed the finding of a critical vulnerability in jQuery, the cross-platform JavaScript library that simplifies the way to interact withRead More →

XSS & path traversal vulnerabilities in Zoho ManageEngine ServiceDesk Plus. Secure your accounts

On: May 19, 2020

In: Vulnerabilities

Specialists from a hacking course have published the finding of multiple vulnerabilities in Zoho ManageEngine ServiceDesk Plus. Exploiting these flaws would allow the deployment of cross-site scripting (XSS) attacks, amongRead More →

Critical XSS vulnerabilities in Visual Composer WPBakery Page Builder plugin allows bypassing firewall

On: May 18, 2020

In: Vulnerabilities

According to NinTechNet experts, developers of Visual Composer, a WordPress plugin with more than 80,000 currently active installations, announced the remediation of multiple vulnerabilities that would allow cross-site scripting (XSS)Read More →

Zero day XSS vulnerability in ‘Login with Facebook’: Hacking Facebook accounts

On: May 13, 2020

In: Vulnerabilities

Vinoth Kumar, a ethical hacking specialist has revealed the presence of a cross-site scripting vulnerability (XSS) present in the “Log in with Facebook” button, which gives third-party websites the optionRead More →

Siemens SiNVR 3 video surveillance system has 10 critical vulnerabilities

On: March 11, 2020

In: Vulnerabilities

No technological development is completely exempt from any security flaw. A report by participants of a hacking course mentions the finding of at least ten critical vulnerabilities in the SiemensRead More →

Critical XSS vulnerability found at TinyMCE

On: February 7, 2020

In: Vulnerabilities

A couple of days ago, a digital forensics researcher reported the discovery of a cross-site scripting (XSS) vulnerability that affects three plugins from the TinyMCE open source text editor. TheRead More →

Evernote extension for Chrome vulnerability allows confidential information theft

On: June 13, 2019

In: Vulnerabilities

Experts in website security audits report the finding of a critical vulnerability in the extension of Evernote for Chrome browser that, if exploited, would allow hackers to hijack the victim’sRead More →

Yahoo Launches Gryffin, a Web Security Scanning Platform

A $10k USD bounty for the hacker who reported critical vulnerability in Yahoo Mail

On: February 25, 2019

In: Data Security

The vulnerability could have been used to extract messages from users and to inject malicious code their outgoing messages Network security and ethical hacking specialists from the International Institute ofRead More →

XSS vulnerabilities (Page 2)

3 critical reflected cross-site scripting (XSS) flaws found on Facebook

Multiple Cross-site scripting XSS vulnerabilities found in Joomla

XSS vulnerability in jQuery allows hackers to deface your website easily with one line of code

XSS & path traversal vulnerabilities in Zoho ManageEngine ServiceDesk Plus. Secure your accounts

Critical XSS vulnerabilities in Visual Composer WPBakery Page Builder plugin allows bypassing firewall

Zero day XSS vulnerability in ‘Login with Facebook’: Hacking Facebook accounts

Siemens SiNVR 3 video surveillance system has 10 critical vulnerabilities

Critical XSS vulnerability found at TinyMCE

Evernote extension for Chrome vulnerability allows confidential information theft

A $10k USD bounty for the hacker who reported critical vulnerability in Yahoo Mail

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]