Mozilla's security engineers are working on new technology that promises to mitigate a large class of Web application vulnerabilities, especially the cross-site scripting (XSS) plague against modern ...

Cross-site scripting (XSS) is the most commonly exploited vulnerability, according to HackerOne, currently the largest platform aimed at connecting organisations with a community of white hat hackers ...

Researchers found 50 cross site scripting vulnerabilities in the popular open source shopping cart application Zen Cart. Popular open source shopping cart app Zen Cart is warning its users of dozens ...

Apple on Tuesday patched code execution and cross-site scripting vulnerabilities on Tiger, Leopard, Vista and XP in a Safari update that included 13 patches. CVE-2008-1010: This update is for Mac OS X ...

Security researchers have discovered several vulnerabilities in the web administration interface of the pfSense open source firewall that enable cross-site scripting (XSS), i.e. the injection of ...

CISA and the FBI urged technology manufacturing companies to review their software and ensure that future releases are free of cross-site scripting vulnerabilities before shipping. The two federal ...

Developers at WordPress are warning users of the content management system to download and apply the most recent update, pushed yesterday, to address a cross-site scripting vulnerability. Developers ...

Online payment provider PayPal has patched a critical cross-site scripting vulnerability that a Finnish researcher disclosed late last week, the company said Monday. Harry Sintonen, who goes by the ...

Ruby on Rails users are advised to upgrade to newly released versions of the Web development framework that contain important security fixes, according to the Rails development team. The 3.2.16 Rails ...