Computer Weekly

Cross-site scripting a top vulnerability, hackers find

Cross-site scripting (XSS) is the most commonly exploited vulnerability, according to HackerOne, currently the largest platform aimed at connecting organisations with a community of white hat hackers ...
Dark Reading

Acunetix Offers Free Web Vulnerability Scanner

LONDON -- Acunetix today launched a free edition of its popular web vulnerability scanner, which allows companies to check for cross site scripting vulnerabilities in their websites at no charge. The ...
Pen Test Partners

AI noise and the effect it’s having on vulnerability disclosure programs

Managing vulnerability reports is difficult for an organisation.  In an ideal world, something like this happens: Everyone is ...
Searchenginejournal.com

WordPress SiteOrigin Widgets Bundle Plugin Vulnerability Affects +600,000 Sites

The SiteOrigins Widgets plugin, with +600,000 active installations, provides a way to easily add a multitude of widget functions like sliders, carousels, maps, change the way blog posts are displayed, ...
Searchenginejournal.com

WordPress Vulnerability Update

WordPress announced an update that fixes seventeen bug fixes and seven vulnerabilities. WordPress is automatically updating sites to WordPress 5.4.1. It is important to check that your WordPress ...
Bleeping Computer

Undisclosed Apache Velocity XSS vulnerability impacts GOV sites

An undisclosed Cross-Site Scripting (XSS) vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASA and NOAA. Although 90 days ...