Latest Security News about xss attacks

Contact US For API Security>

XSS attacks in Joomla! 3.x before 3.9.12

Overview : In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS attacks using the logo parameter of the default templates. Affected Product(s) : Joomla! 3.x before 3.9.12 Vulnerability Details : CVE ID : CVE-2019-16725 Inadequate escaping allowed XSS attacks using the logo parameter of the default templates. Solution : Upgrade to version 3.9.12

Contact US For API Security>

A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server

Overview : A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Server Spoofing Vulnerability'. Mitigations Microsoft has not identified any mitigating factors for this vulnerability. Workarounds Microsoft has not identified any workarounds for this vulnerability. Acknowledgements Pham Van Khanh @rskvp93 from Viettel Cyber [...]
Contact US For API Security>

Etherpad-Lite 1.7.5 has an XSS Vulnerability

Overview : templates/pad.html in Etherpad-Lite 1.7.5 has XSS when the browser does not encode the path of the URL, as demonstrated by Internet Explorer. Affected Product(s) : Etherpad-Lite 1.7.5 Vulnerability Details : CVE ID : CVE-2019-18209 The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks. The vulnerability exists due to insufficient […]

Contact US For API Security>

Home

CYBER SECURITY, NETWORK SECURITY, WEB SECURITY COMPANY IN INDIA – PROPHAZE The most common Firewalls , Secure networks plays very less role in Web Application security attacks against your organisation. Security breach can happen through the front end of your application to the back end database. Prophaze secures you with deep penetration tests and vulnerability […]