146 Results for

cross-site scripting (XSS)

Article

Microsoft to fix IE8 cross-site scripting problem, again

Microsoft to issue third fix for XSS filter in IE8 that can be exploited to launch cross-site scripting attacks on Web sites.

By April 20, 2010

Article

Google RatProxy looks for cross-site flaws

Free tool helps Web developers analyze their site for a variety of cross-site vulnerabilities.

By July 3, 2008

Article

Adobe Reader Open Parameters XSS

A feature called Open Parameters within older versions of the Adobe Reader browser plug-in can be corrupted with malicious content.

By January 3, 2007

Article

Yahoo Mail hijacking exploit selling for $700

XSS vulnerability allows attacks to steal and replace tracking cookies, as well as read and send e-mail from a victim's account.

By November 26, 2012

Article

Google's post-JavaScript Web plan raises hackles

With its Dart language, Google hopes to overcome problems with the widely used JavaScript. But some dislike Google's secretive development style.

By September 13, 2011

Article

Google beefs up the cash bounty for reporting vulnerabilities

The bounty for cross-site scripting bugs on Google Accounts, for instance, more than doubles to $7,500. The cash rewards tied to Gmail and Google Wallet get hefty bumps, too.

By June 6, 2013

Article

Roll your own Firefox scripts with Chickenfoot

This free add-on simplifies script writing to bring more power to your browsing.

By May 6, 2008

Article

Hacker redirects Obama's Web site to Clinton's

Visitors to section of Obama's site got redirected to Clinton's site over the weekend after someone exploited cross-site scripting vulnerability.

By April 21, 2008

Article

Block scripts in Firefox

The NoScript add-on will give you some extra control and protection against malicious scripts and ads.

By June 24, 2009

Article

Gmail cookie stolen via Google Spreadsheets

A security researcher says obtaining one cookie could have compromised all Google services in a new Internet Explorer cross-site scripting attack.

By April 14, 2008