Dark Reading

Researcher Details New Class Of Cross-Site Scripting Attack

A new type of cross-site scripting (XSS) attack that exploits commonly used network administration tools could be putting users' data at risk, a researcher says. Tyler Reguly, lead security research ...
Threat Post

Reflected XSS Bug Patched in Popular WooCommerce WordPress Plugin

Automattic has patched a reflected cross-site scripting vulnerability in the WooCommerce WordPress plugin. An extension of the WooCommerce WordPress plugin, used by 28 percent of all online stores, ...
Dark Reading

Report: Cross-Site Scripting Still Number One Web Attack

Web applications are a common target for cyber attacks. And attacks are always evolving. That's why one of the conclusions of a new report — that the venerable cross-site scripting attack is still the ...