Threat Post

WordPress Jetpack Plugin Patched Against Stored XSS Vulnerability

The popular Jetpack WordPress plugin was updated this week in order to patch a critical stored cross-site scripting vulnerability. After a few critical bugs were recently discovered and patched in the ...
ZDNet

Evernote for Windows patch resolves stored XSS vulnerability

Evernote has patched a flaw in the Microsoft Windows version of the app which permitted stored XSS attacks to occur. The vulnerability, CVE-2018-18524, has been resolved in Evernote for Windows 6.16.1 ...

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS).
Threat Post

Scrubbr: Stored XSS flaw finder

The HP Security Labs blog is pointing to a new database scanning tool called “Scrubbr” that can help check numerous database technologies for the presence of possible stored cross-site scripting ...
Searchenginejournal.com

WordPress Stored XSS Vulnerability – Update Now

WordPress announced a security update to fix two vulnerabilities that could provide an attacker with the opportunity to stage a full site takeover. Among the two vulnerabilities, the most serious one ...
Searchenginejournal.com

WordPress Discovers XSS Vulnerability – Recommends Updating To 6.5.2

WordPress announced the 6.5.2 Maintenance and Security Release update that patches a store cross site scripting vulnerability and fixes over a dozen bugs in the core and the block editor. The same ...
ZDNet

Stored XSS bug in Apple iCloud domain disclosed by bug bounty hunter

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...