Facebook disclosed today how it has beefed up cross-site request forgery (CSRF) tokens in order to ward off the BREACH attack. The BREACH attack was the talk of Black Hat last summer. It was disclosed ...
Glassdoor, a website for job hunting and posting anonymous company reviews, has resolved a critical issue that could be exploited to take over accounts. Bug bounty researcher "Tabahi" (ta8ahi) found ...
PTA warns website admins of critical flaws in popular WordPress plugins, urging immediate updates to prevent CSRF and XSS ...
Has anyone seen any problems with Rails' CSRF protection failing on iPhones?<BR><BR>We've had a couple of reports from users who're are seeing Rails' 422 "change rejected" page, and I can only think ...
PayPal recently fixed a vulnerability on its PayPal.me site that could’ve let an attacker change a user’s profile without their permission. PayPal recently fixed a vulnerability on its PayPal.me site ...
One of the hackers over at Bitquark popped a shell on on the Oculus Developer Portal giving him full reign over the special admin panel inside. If he felt so inclined, this allowed him edit users, ...
The Pakistan Telecommunication Authority (PTA) has issued a cybersecurity advisory warning website administrators and developers about multiple ...
It’s common knowledge that images make webpages, email footers and other similar elements more presentable and attractive. But a simple image containing a malicious link can be a serious threat. For ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback