XSS

Experts warn of attacks against Cisco ASA devices after researchers have published a PoC exploit code on Twitter for a known XSS vulnerability. Experts warn of attacks against Cisco ASA devices after researchers from Positive Technologies have published a PoC exploit code on Twitter for the CVE-2020-3580 XSS vulnerability. Tenable experts published an alert about […]

The post Hackers target Cisco ASA devices after a PoC exploit code was published online appeared first on Security Affairs.

Read More Hackers target Cisco ASA devices after a PoC exploit code was published online

The Check Point Research Team (CPR) has recently conducted an investigation as they suspected some Atlassian domain flaws. In a communication from Thursday, they revealed precarious system features in the Atlassian project, because of their use of SSO …

Read More Atlassian Domain Flaws Could Have Led to Data Leakage and Account Control with Just One-click Exploit

The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The crime gang announced it was closing up shop after its servers were seized and someone drained funds from an account the group uses to pay affiliates.

Read More DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

PayPal has addressed a reflected cross-site scripting (XSS) vulnerability that affected the currency converter feature of user wallets.  PayPal has fixed a reflected cross-site scripting (XSS) vulnerability that was discovered in the currency converter feature of user wallets on February 19, 2020, close one year ago. The ‘reflected XSS and CSP bypass’ vulnerability was reported […]

The post PayPal addresses reflected XSS bug in user wallet currency converter appeared first on Security Affairs.

Read More PayPal addresses reflected XSS bug in user wallet currency converter