Linux Journal

Fortifying Linux Web Applications: Mastering OWASP ZAP and ModSecurity for Optimal Security

In an increasingly interconnected digital world, web applications are the backbone of online services. With this ubiquity comes a significant risk: web applications are prime targets for cyberattacks.
Yahoo

Tackle Cross Site Scripting using Content Security Policy

Cross site scripting (XSS) is identified as one of the main threats to web users by the OWASP Foundation. XSS occurs when a malicious third party injects a script into content served by your website.
Business Wire

Stop Cross-Site Scripting Errors Now: Veracode Launches Free Detection Service

BURLINGTON, Mass.--(BUSINESS WIRE)--Cross-site scripting (XSS) errors are responsible for more than half of all web application vulnerabilities 1. So, in this age of accountability and expectations ...
Bleeping Computer

Four Years Later, We Have a New OWASP Top 10

The Open Web Application Security Project (OWASP) has published a new version of its infamous Top 10 vulnerability ranking, four years after its last update, in 2013. The OWASP Top 10 is not an ...
Dark Reading

Tech Insight: XSS Exposed

SQL injection has been getting most of the attention lately, but the average SQL injection attack isn't nearly as sophisticated and difficult to pull off as a well-crafted cross-site scripting (XSS) ...
Dark Reading

OWASP Reshuffles Its Top 10 List, Adds New Categories

Access control vulnerabilities and misconfigurations occur more often than any other security weakness and took the No. 1 spot on a top 10 list of Web application security risks, according to a draft ...
Threat Post

WordPress XSS Bug Allows Drive-By Code Execution

Sites that use the Gutenberg (found in WordPress 5.0 to 5.2.2) are open to complete takeover. A just-patched stored cross-site scripting (XSS) vulnerability in WordPress allowed drive-by remote ...