Network World

New cross-site scripting attack targets VoIP

A dangerous new cross-site scripting attack is being called the first Web 2.0 exploit used against VoIP. Security researchers have found a way to execute cross-site scripting attacks through VoIP ...
Network World

New cross-site scripting attack targets VoIP; Stock-option packages spur risky CEO behavior

Security researchers have found a way to execute cross-site scripting attacks through VoIP clients, introducing a dangerous new threat almost no one is guarding against, according to vendor Secure ...
Dark Reading

New Plug-ins Help Firefox Find XSS, SQL Injection

4:14 PM -- Two new Firefox plug-ins were released last month to assist developers and security professionals in testing for cross-site scripting (XSS) and SQL injection vulnerabilities. Even though ...
CRN

Twitter Site Update Opened Hole For 'onMouseOver' XSS Attack

The teen, identified as Pearce Delphin, 17, detected the cross-site scripting (XSS) flaw which allowed JavaScript code to appear as plain text in tweets that could then be launched on the browsers of ...