heise online

Cross-site scripting: vulnerabilities in pfSense enable admin cookie theft

Security researchers have discovered several vulnerabilities in the web administration interface of the pfSense open source firewall that enable cross-site scripting (XSS), i.e. the injection of ...
TechRepublic

Cross-site scripting attacks: A cheat sheet

Even the most trustworthy-looking website could trick you into giving up personal details through cross-site scripting. Here’s what you need to know about XSS attacks. It’s easy to become convinced of ...
heise online

Web-Security: With Content Security Policy against Cross-Site Scripting, Part 2

Cross-site scripting (XSS) remains one of the most common security threats to web applications. Despite advanced protection mechanisms, attackers continue to find new ways to exploit XSS ...