CGISecurity Logo

Topics

Tags

  • XSS cross webmail worm

    Posted by Robert A on

    in
    ,
    | |

    Rosario Valotta writes in to tell us "I realized a PoC of what I define a XWW – Cross webmail worm, based on exploitation of XSS vulnerabilities. Detailed informations and a video can be found at: http://rosario.valotta.googlepages.com/home" Article Link: http://rosario.valotta.googlepages.com/home

  • Securing Firefox: How to avoid hacker attacks on Mozilla’s browser

    Posted by Robert A on

    in
    | |

    "Security problems with Microsoft's dominant Internet Explorer browser helped pave the way for Mozilla Firefox to emerge as an alternative for Web surfers. However, Firefox users should be aware that hackers can exploit software flaws and design features to launch attacks. The following configuration changes, recommended by CERT/CC, can disable various features and set up…

  • Average zero-day bug has 348-day lifespan, exec says

    Posted by Robert A on

    in
    , ,
    | |

    "The average zero-day (0day) bug has a lifespan of 348 days before it is discovered or patched, and some vulnerabilities live on for much longer, according to security vendor Immunity Inc.'s chief executive officer. Zero-day bugs are vulnerabilities that have not been patched or made public. When discovered and not disclosed, these bugs can be…

  • Hacking Capitalism: electronic financial trading

    Posted by Robert A on

    in
    | |

    "You'd think electronic financial trading would be extra secure, but not so much: One of the most popular application-layer protocols in the financial industry leaves these money applications wide open to attack, according to researchers. The application-layer FIX (financial information exchange) protocol is used by financial services firms, stock exchanges, and investment banks for automated…

Favorite Links

Twitter

Twitter

Popular Pages

WASC Threat Classification

Copyright 2000-2026 CGISecurity.com – The oldest application security site online, predating OWASP.