Marcel SIneM(S)US · @simsus
226 followers · 5650 posts · Server social.tchncs.deSchwere Lücken in Protons Web-App gefunden und gestopft - inside-it.ch https://www.inside-it.ch/schwere-luecken-in-protons-web-app-gefunden-und-gestopft-20230908 #CrossSiteScripting #XSS
Marcel SIneM(S)US · @simsus
199 followers · 4484 posts · Server social.tchncs.de
#Fediverse: Kritische Sicherheitslücken in #Mastodon-Software abgedichtet | Security https://www.heise.de/news/Fediverse-Kritische-Sicherheitsluecken-in-Mastodon-Software-abgedichtet-9209526.html #Patchday #XSS #CrossSiteScripting #DenialOfService #DoS
#fediverse #mastodon #patchday #xss #crosssitescripting #denialofservice #dos
Marcel SIneM(S)US ☑️ · @simsus
163 followers · 2057 posts · Server social.tchncs.deUnd ich dachte, dass XSS Lücken der Vergangenheit angehören... Okay, ich habe auch noch eine Seite mit einer XSS Problematik. Aber die ist meines Erachtens nicht persistierend...
#CMS #Typo3: Hochriskante #XSS-Lücke ermöglicht Unterschieben von schädlichem HTML | heise online https://www.heise.de/news/CMS-Typo3-Schwachstelle-ermoeglicht-Cross-Site-Scripting-7490680.html #CrossSiteScripting #Patchday #ContentManagementSystem
#contentmanagementsystem #patchday #crosssitescripting #xss #typo3 #cms
Messageries Club de France · @Olvid_Club_de_France
54 followers · 344 posts · Server mastodon.social
Le top 10 des différents types de #cyberattaques
1- Attaque par #DénideService (DoS)
2- Programme malveillant ( #malware )
3- #hameconnage ( #phishing )
4- Téléchargement furtif ( #DrivebyDownload )
5- Cassage de #motdepasse
6- #InjectionSQL (Structured Query Language)
7- Attaque de l’homme au milieu ( #MitM )
8- #crosssitescripting ( XXS )
9- #Ecoute clandestine
#oodrive #chiffrement #cybersecurite #rgpd #souverainete #France
https://www.oodrive.com/fr/blog/securite/top-10-differents-types-cyberattaques/
#cyberattaques #denideservice #malware #hameconnage #phishing #drivebydownload #motdepasse #InjectionSQL #mitm #crosssitescripting #ecoute #attaquedesanniversaires #oodrive #chiffrement #cybersecurite #rgpd #souverainete #france
F0rm4t · @F0rm4t
8 followers · 12 posts · Server infosec.exchange
Automated Detection and Response for Azure WAF with Sentinel
How to create an automation playbook to respond to incident by blocking the source IP of the attacker on the WAF Policy which in turn stops subsequent attacks upfront from these source IPs.
#azure #azurewaf #sentinel #microsoftsentinel #playbook #siem #soar #cloud #cloudsecurity #API #waf #SQLi #XSS #automation #CrossSiteScripting #application #detection #threat #ir #incidentresponse #multicloud #soc #microsoft #microsoftsecurity
#azure #azurewaf #sentinel #MicrosoftSentinel #playbook #siem #soar #cloud #cloudsecurity #api #waf #sqli #xss #automation #crosssitescripting #application #detection #threat #ir #incidentresponse #multicloud #soc #microsoft #microsoftsecurity
Tarnkappe.info · @tarnkappeinfo
1529 followers · 3787 posts · Server social.tchncs.de
📬 Samsung: Sicherheitslücke im Galaxy Store lässt Malware herein
#Hacking #CORS #CrossSiteScripting #Deeplinks #GalaxyStore #SamsungGalaxy #URLParameter #WebView https://tarnkappe.info/artikel/hacking/samsung-sicherheitsluecke-im-galaxy-store-laesst-malware-herein-258618.html
#webview #URLParameter #samsunggalaxy #GalaxyStore #DeepLinks #crosssitescripting #cors #hacking
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Facebook, News and XSS Underpin Complex Browser Locker Attack - A sophisticated “browser locker” campaign is spreading via Facebook, ultimately pushing a tech-sup... https://threatpost.com/facebook-xss-browser-locker/160465/ #crosssitescripting #vulnerabilities #techsupportscam #browserlocker #malwarebytes #openredirect #redirections #websecurity #securitybug #facebook #grupoppe #newssite #peru #xss
#xss #peru #newssite #grupoppe #facebook #securitybug #websecurity #redirections #openredirect #malwarebytes #browserlocker #techsupportscam #vulnerabilities #crosssitescripting
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Critical Adobe Flaws Allow Attackers to Run JavaScript in Browsers - Five critical cross-site scripting flaws were fixed by Adobe in Experience Manager as part of its ... https://threatpost.com/critical-adobe-flaws-attackers-javascript-browsers/159026/ #adobeexperiencemanager #informationdisclosure #crosssitescripting #htmlinjectionflaw #vulnerabilities #adobeframemaker #adobeindesign #browserattack #criticalflaw #patchtuesday #websecurity #adobepatch #javascript #adobebug #adobe #xss
#xss #adobe #adobebug #javascript #adobepatch #websecurity #patchtuesday #criticalflaw #browserattack #adobeindesign #adobeframemaker #vulnerabilities #htmlinjectionflaw #crosssitescripting #informationdisclosure #adobeexperiencemanager
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Attackers Can Exploit Critical Cisco Jabber Flaw With One Message - An attacker can execute remote code with no user interaction, thanks to CVE-2020-3495. https://threatpost.com/attackers-can-exploit-critical-cisco-jabber-flaw-with-one-message/158942/ #crosssitescripting #vulnerabilities #securityupdate #cve-2020-3495 #vulnerability #websecurity #ciscojabber #ciscoflaw #windows #cisco #patch #xmpp #xss
#xss #xmpp #patch #cisco #windows #ciscoflaw #ciscojabber #websecurity #vulnerability #cve #securityupdate #vulnerabilities #crosssitescripting
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
High-Severity TinyMCE Cross-Site Scripting Flaw Fixed - The cross-site scripting flaw could enable arbitrary code execution, information disclosure - and ... https://threatpost.com/high-severity-tinymce-cross-site-scripting-flaw-fixed/158306/ #crosssitescripting #vulnerabilities #cve-2020-12648 #websecurity #javascript #security #tinymce #code #flaw #html #app #poc #xss
#xss #poc #app #html #flaw #code #tinymce #security #javascript #websecurity #cve #vulnerabilities #crosssitescripting
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Newsletter WordPress Plugin Opens Door to Site Takeover - An XSS bug and a PHP object-injection vulnerability are present in a plugin used by hundreds of th... https://threatpost.com/newsletter-wordpress-plugin-site-takeover/158025/ #securityvulnerability #crosssitescripting #phpobjectinjection #vulnerabilities #websecurity #newsletter #wordfence #wordpress #plugin #bug #xss
#xss #bug #plugin #wordpress #wordfence #newsletter #websecurity #vulnerabilities #phpobjectinjection #crosssitescripting #securityvulnerability
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Black Hat USA 2020: Critical Meetup.com Flaws Reveal Common AppSec Holes - With Black Hat USA 2020 kicking off this week, Erez Yalon with Checkmarx talks about newly disclos... https://threatpost.com/black-hat-usa-2020-critical-meetup-com-flaws-reveal-common-appsec-holes/157950/ #newsmakerinterviews #applicationsecurity #crosssitescripting #blackhatusa2020 #vulnerability #criticalflaw #websecurity #blackhat #webflaw #videos #appsec #meetup #patch #csrf #xss
#xss #csrf #patch #meetup #appsec #videos #webflaw #blackhat #websecurity #criticalflaw #vulnerability #blackhatusa2020 #crosssitescripting #applicationsecurity #newsmakerinterviews
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Meetup Critical Flaws Allow ‘Group’ Takeover, Payment Theft - Researchers disclosed critical flaws in the popular Meetup service at Black Hat USA 2020 this week... https://threatpost.com/critical-meetup-website-flaws-takeover-payment-theft/157934/ #crosssitescripting #blackhatusa2020 #vulnerability #securitybugs #websecurity #websiteflaw #blackhat #meetup #hacks #flaws #patch #csrf #xss
#xss #csrf #patch #flaws #hacks #meetup #blackhat #websiteflaw #websecurity #securitybugs #vulnerability #blackhatusa2020 #crosssitescripting
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Login with Facebook Bug Earns $20K Bounty - The cross-site scripting vulnerability could have allowed trivial account takeover. more: https://threatpost.com/login-facebook-bug-20k-bounty/155732/ #continuewithfacebook #crosssitescripting #facebookloginsdk #accounttakeover #uncategorized #vulnerability #vinothkumor #javascript #bugbounty #facebook #windows #flaw #$20 #bug
#bug #flaw #windows #facebook #bugbounty #javascript #vinothkumor #vulnerability #uncategorized #accounttakeover #facebookloginsdk #crosssitescripting #continuewithfacebook
The Hacker News · @thehackernews
402 followers · 2779 posts · Server social.tchncs.de
This WhatsApp Bug Could Have Let Attackers Access Files On Your PCs https://thehackernews.com/2020/02/hack-whatsapp-web.html #Whatsappvulnerability #hackwhatsappaccount #Crosssitescripting #securewebbrowser #XSSvulnerability #Whatsappweb #ElectronJS #JavaScript
#javascript #Whatsappvulnerability #hackwhatsappaccount #crosssitescripting #securewebbrowser #XSSvulnerability #WhatsAppWeb #electronjs
HashtagSecurity :verified: · @hashtagsecurity
115 followers · 380 posts · Server infosec.exchangeTeil 2 unserer Web-#Pentesting für #Einsteiger Videoreihe ist live! Heute werfen wir einen Blick auf die drei Varianten von Cross-Site-Scripting.
#pentesting #einsteiger #xss #crosssitescripting #youtube #video
Manuel D'Orso · @cirku17
116 followers · 430 posts · Server infosec.exchangeRT @SearchSecurity@twitter.com
Need help preventing #XSS attacks? Review characters to filter when validating user input, as well as sources and sinks to avoid when encoding output. #WebAppSecurity #AppSecurity #CrossSiteScripting @bsdbandit@twitter.com https://bit.ly/2HnAOjq
#xss #webappsecurity #appsecurity #crosssitescripting