ZDNet

Google working on new Chrome security feature to 'obliterate DOM XSS'

Google has created a new browser API that will help Chrome fight certain types of cross-site scripting (XSS) vulnerabilities, adding another level of protection at the browser level to keep users safe ...
ZDNet

Hackers target critical XSS vulnerability in millions of Wordpress sites

Millions of Wordpress websites are at risk due to a vulnerability present in the default installation of the content management system. Security researcher David Dede warned on Wednesday the ...
Threat Post

Once Popular Online Ad Format Opens Top Tier Sites to XSS Attacks

Online ad industry moves away from once prolific ads that are now deemed insecure because of DOM-based XSS vulnerabilities. Certain types of online ads that expand, contract and pop-open aren’t just ...
Threat Post

Adobe Patches DOM-XSS Flaw in Analytics AppMeasurement for Flash Library

Adobe today patched a DOM-based cross-site scripting vulnerability in the Adobe Analytics AppMeasurement for Flash library. Adobe today patched a vulnerability in the Adobe Analytics AppMeasurement ...