Dark Reading

'Ardilla' Automatically Roots Out SQL Injection And XSS, Generates Attacks

Researchers have built a tool that automatically finds and exploits SQL injection and cross-site scripting vulnerabilities in Web applications. The so-called Ardilla tool uses a technique developed by ...
Dark Reading

XSS Book Published

LAS VEGAS -- WhiteHat Security today announced the availability of Jeremiah Grossman’s book – Cross-Site Scripting Attacks: XSS Exploits and Attacks. The book offers a detailed definition of the ...
Reuters

Cross-Site Scripting: An Old Problem Returns

In May, Web security consultant George Deglin discovered a cross-site scripting (XSS) exploit that involved Facebook's controversial Instant Personalization feature. The exploit ran on Yelp, one of ...