All Links to New York Times Articles Prior to 2013 Vulnerable to XSS Attacks

URLs to articles in New York Times (NYT) published before 2013 have been found to be vulnerable to an XSS (cross-site scripting) attack capable of delivering code to be executed in the context of the web browser.   Based on… Continue Reading

Mozilla Online Website Two Sub-Domains XSS (Cross-site Scripting) Bugs ( All URLs Under the Two Domains)

Mozilla Online Website Two Sub-Domains XSS (Cross-site Scripting) Bugs ( All URLs Under the Two Domains)     Domains: http://lxr.mozilla.org/ http://mxr.mozilla.org/ (The two domains above are almost the same)         Websites information: “lxr.mozilla.org, mxr.mozilla.org are cross references designed to… Continue Reading

New York Times nytimes.com Page Design XSS Vulnerability (Almost all Article Pages Before 2013 are Affected)

The New York Times  Old Articles Can Be Exploited by XSS Attacks (Almost all Article Pages Before 2013 Are Affected)   Domain: http://www.nytimes.com/   “The New York Times (NYT) is an American daily newspaper, founded and continuously published in New… Continue Reading

Amazon Website Covert Redirect Web Security Bugs Based on Facebook – Attack Simulation

  Amazon Website Covert Redirect Web Security Bugs Based on Facebook – Attack Simulation   Domain: http://www.amazon.com “Amazon.com, Inc. (/ˈæməzɒn/ or /ˈæməzən/) is an American electronic commerce company with headquarters in Seattle, Washington. It is the largest Internet-based retailer in… Continue Reading