Dark Reading

Veracode Launches Free XSS Bug Scanning Service

Cross-site scripting may typically be one of the easiest vulnerabilities to detect and fix, but it remains one of the most pervasive. Veracode turned up the heat on the bug today with a free service ...
Infosecurity-magazine.com

Google Takes Aim at XSS with Web App Scanner & Testbed

Cross-site scripting (XSS) was, is and probably will be the most popular web application vulnerability to exploit—so it’s good news that Google has developed an internal web application security ...
Dark Reading

Veracode Launches Massive-Scale Vulnerability Scanning Service

BURLINGTON, Mass. – August 2, 2011 – Faced with the reality that exploiting a single SQL Injection vulnerability or cross-site scripting (XSS) error in any web ...
CSOonline

What are vulnerability scanners and how do they work?

Vulnerability scanners are automated tools that allow organizations to check if their networks, systems and applications have security weaknesses that could expose them to attacks. Vulnerability ...
Bleeping Computer

Undisclosed Apache Velocity XSS vulnerability impacts GOV sites

An undisclosed Cross-Site Scripting (XSS) vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASA and NOAA. Although 90 days ...
Searchenginejournal.com

WordPress Stored XSS Vulnerability – Update Now

WordPress announced a security update to fix two vulnerabilities that could provide an attacker with the opportunity to stage a full site takeover. Among the two vulnerabilities, the most serious one ...
Threat Post

WordPress XSS Bug Allows Drive-By Code Execution

Sites that use the Gutenberg (found in WordPress 5.0 to 5.2.2) are open to complete takeover. A just-patched stored cross-site scripting (XSS) vulnerability in WordPress allowed drive-by remote ...