Dark Reading

Twitter Hit With Another Cross-Site Scripting Vulnerability

Over this Labor Day weekend developers at Twitter had to do a bit of additional labor that they should have previously completed - and that's to close a potentially dangerous cross-site scripting (XSS ...
Computer Weekly

Cross-site scripting a top vulnerability, hackers find

Cross-site scripting (XSS) is the most commonly exploited vulnerability, according to HackerOne, currently the largest platform aimed at connecting organisations with a community of white hat hackers ...
Searchenginejournal.com

WordPress SiteOrigin Widgets Bundle Plugin Vulnerability Affects +600,000 Sites

The SiteOrigins Widgets plugin, with +600,000 active installations, provides a way to easily add a multitude of widget functions like sliders, carousels, maps, change the way blog posts are displayed, ...
Searchenginejournal.com

Popular Plugin for WooCommerce Patches Vulnerability

Booster for WooCommerce is a popular all-in-one WordPress plugin that offers over 100 functions for customizing WooCommerce stores. The modular bundle offers all of the most essential functionalities ...
Threat Post

WordPress Patches Zero-Day Vulnerability

WordPress quickly turned around a patch for a stored cross-site scripting zero-day vulnerability in the CMS’ core engine. UPDATE: A critical stored cross-site scripting zero-day vulnerability ...