Category Archives: XSS

The Weather Channel at Least 76.3% Links Vulnerable to XSS Attacks

      The Weather Channel at Least 76.3% Links Vulnerable to XSS Attacks     Domain Description: http://www.weather.com/   “The Weather Channel is an American basic cable and satellite television channel which broadcasts weather forecasts and weather-related news and … Continue reading

Posted in 0Day, Website Testing, XSS | Tagged , , , , , , , , , , , , , , , , | Leave a comment

The New York Times Old Articles Can Be Exploited by XSS Attacks (Almost all Article Pages Before 2013 Are Affected)

      Domain: http://www.nytimes.com/   “The New York Times (NYT) is an American daily newspaper, founded and continuously published in New York City since September 18, 1851, by the New York Times Company. It has won 114 Pulitzer Prizes, … Continue reading

Posted in 0Day, Website Testing, XSS | Tagged , , , , , , , , , , , , , , , , , | Leave a comment

Mozilla Online Website Two Sub-Domains XSS (Cross-site Scripting) Bugs ( All URLs Under the Two Domains)

    Domains: http://lxr.mozilla.org/ http://mxr.mozilla.org/ (The two domains above are almost the same)   Websites information: “lxr.mozilla.org, mxr.mozilla.org are cross references designed to display the Mozilla source code. The sources displayed are those that are currently checked in to the … Continue reading

Posted in Website Testing, XSS | Tagged , , , , , , , , , , , , , , , , | Leave a comment

All Links in Two Topics of Indiatimes (indiatimes.com) Are Vulnerable to XSS (Cross Site Scripting) Attacks

    (1) Domain Description: http://www.indiatimes.com “The Times of India (TOI) is an Indian English-language daily newspaper. It is the third-largest newspaper in India by circulation and largest selling English-language daily in the world according to Audit Bureau of Circulations … Continue reading

Posted in Website Testing, XSS | Tagged , , , , , , , , , , , , , , , , | Leave a comment

CVE-2014-8753 Cit-e-Net Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities

  CVE-2014-8753 Cit-e-Net Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities Exploit Title: Cit-e-Net Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities Product: Cit-e-Access Vendor: Cit-e-Net Vulnerable Versions: Version 6 Tested Version: Version 6 Advisory Publication: February 12, 2015 Latest Update: June … Continue reading

Posted in CVE, XSS | Tagged , , , , , , , , , , , , , , , , | Leave a comment

About Group (about.com) All Topics (At least 99.88% links) Vulnerable to XSS & Iframe Injection Security Attacks, About.com Open Redirect Web Security Vulnerabilities

About Group (about.com) All Topics (At least 99.88% links) Vulnerable to XSS & Iframe Injection Security Attacks, About.com Open Redirect Security Vulnerabilities   Vulnerability Description: About.com all “topic sites” are vulnerable to XSS (Cross-Site Scripting) and Iframe Injection (Cross Frame … Continue reading

Posted in 0Day, Open Redirect, XFS, XSS | Tagged , , , , , , , , , , , , , , | Leave a comment

Alibaba Taobao, AliExpress, Tmall, Online Electronic Shopping Website XSS & Open Redirect Security Vulnerabilities

Alibaba Taobao, AliExpress, Tmall, Online Electronic Shopping Website XSS & Open Redirect Security Vulnerabilities Domains Basics: Alibaba Taobao, AliExpress, Tmall are the top three online shopping websites belonging to Alibaba. Vulnerability Discover: Jing Wang, Division of Mathematical Sciences (MAS), School … Continue reading

Posted in IT News, Open Redirect, Phishing, XSS | Tagged , , , , , , , , , , , , , , , , | Leave a comment