Dark Reading

Cross-Site Scripting: Attackers' New Favorite Flaw

For years buffer overflow has been the favorite target of online attackers, but no more: Cross-site scripting is now the biggest culprit That's the scoop from Mitre Corp., which later this week will ...
Bleeping Computer

Latest SQL Injection news

CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security ...
Bleeping Computer

CISA urges software devs to weed out XSS vulnerabilities

CISA and the FBI urged technology manufacturing companies to review their software and ensure that future releases are free of cross-site scripting vulnerabilities before shipping. The two federal ...
InfoWorld

Web site scripting flaws are common and slow to be fixed

Security consultant says two-thirds of sites are vulnerable to cross-site script attacks, and about half are never fixed A majority of Web sites have at least one major security issue that could be ...