Threat Post

Bypass of Internet Explorer Cross-Site Scripting Filter Possible

Attackers are able to bypass the reflective cross-site scripting filter in Internet Explorer; the weakness is accepted by Microsoft as part of its design philosophy for the filter and will not be ...
CSOonline

What’s old is new again: AI is bringing XSS vulnerabilities back to the spotlight

Cross-site scripting vulnerabilities (XSS) have vexed cybersecurity professionals for 30 years. Following a CISA and FBI alert, experts say unless these flaws are fixed soon, AI models may ingest and ...
Bleeping Computer

High-severity GitLab flaw lets attackers take over accounts

GitLab patched a high-severity vulnerability that unauthenticated attackers could exploit to take over user accounts in cross-site scripting (XSS) attacks. The security flaw (tracked as CVE-2024-4835) ...
TechRepublic

British Airways data theft demonstrates need for cross-site scripting restrictions

British Airways data theft demonstrates need for cross-site scripting restrictions Your email has been sent A major airline suffered a data breach involving a cross-site scripting attack. Learn how it ...