Critical Facebook XSS bugs could be used to hijack accounts

Written by DP

Friday, 3 September 2010

We suggest that you read a late July 2010 post by Robert Abela from Acunetix, regarding a discovered XSS on Facebook which could lead to account hijacks. During the same period, another critical Facebook XSS also came to light... It was submitted to our archive by web security researcher nicknamed "AKABEY" and still appears to be working...


read more...

Just another persistent Twitter XSS

Written by DP

Monday, 19 July 2010

*UPDATED 20 Jul 2010 : 10:39pm* - A mirror of the now corrected vulnerability has been published. Also, read on an excellent technical blog post by Billy (BK) Rios about another Twitter XSS bug... Romanian security researcher "d3v1l" from Security-Sh3ll, has notified us just a few minutes ago about a persistent XSS that he discovered on Twitter's help center...


read more...

YouTube persistent XSS vulnerability

Written by DP

Monday, 5 July 2010

Researchers from a Romanian security team (InSecurityRomania) have revealed a critical persistent cross-site scripting (XSS) vulnerability which affects YouTube's comment field.


read more...

Persistent XSS vulnerability affecting Twitter promptly corrected

Written by DP

Sunday, 27 June 2010

Indonesian security researcher who goes by the nickname "H4x0r-x0x" (http://www.0wn3d-5ys.co.cc/), has discovered and submitted to the XSS archive, a critical persistent cross-site scripting vulnerability  (Script Insertion) on the popular microblogging platform Twitter.com...


read more...

National Security Agency (NSA) SSL web page XSSed

Written by DP

Wednesday, 23 June 2010

Security researcher "Zeitjak", has notified us that the NSA.gov website is vulnerable to a new critical cross-site scripting vulnerability...


read more...

Norton Update Center critical XSS vulnerability

Written by DP

Monday, 21 June 2010

According to security researcher "d3v1l" from Security-Shell, the Norton Update Center is vulnerable to cross-site scripting, redirects and html injections.


read more...

older news...  

 
38463 total xss
12438 special xss
2224 fixed
5600 xss onhold
1760 EW subscribers

Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.