A note regarding future updates on XSSed

Written by KF & DP

Sunday, 16 May 2010

Dear All, As you may have noticed, XSSed is partially inactive for about a year now. A number of good personal reasons are responsible for this and there is no need to explain them. We are in the process of analyzing and redesigning the whole site...

New HSBC and Barclays bank XSS and open redirect bugs

Written by DP

Friday, 29 May 2009

*UPDATED 03/06/2009* - A fresh batch of critical cross-site scripting and open redirect vulnerabilities was added today to the archive.

Flash clickTAG parameter XSS. Banks, e-shops, Adobe and others vulnerable

Written by DP

Tuesday, 12 May 2009

Hundreds of thousand websites host vulnerable Flash files which can be used by malicious people to conduct convincing phishing and XSS attacks. In most cases cookie hijacking is possible. Unsuspecting users can be redirected to malware content sites from trustworthy sites using SSL.

Cross-site scripting flaw on Winbank's easypay.gr SSL site

Written by DP

Tuesday, 12 May 2009

Hexspirit has reported another critical XSS vulnerability on easypay.gr, owned by Pireaus Bank / Winbank.

Major Greek bank sites with SSL vulnerable to XSS and open redirects

Written by DP

Sunday, 10 May 2009

Security researcher "Hexspirit" has discovered multiple XSS and open redirect vulnerabilities affecting all major Greek bank websites.

Google SSL page vulnerable to XSS

Written by DP

Wednesday, 6 May 2009

A security researcher who goes by the nickname "Black-Hacker", has submitted to the archive a critical XSS vulnerability affecting a Google SSL page.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18

45884 total xss 14724 special xss 3026 fixed 5328 xss onhold 2933 EW subscribers

Tweets about ""cross site scripting" OR from:xssedcom"