JavaScript Xss - Search News

News

‘Grafana Ghost’ XSS flaw exposes 47,000 servers to account takeover

The vulnerability enables attackers to load malicious plugins, hijack sessions, and create administrative accounts on ...

Infosecurity Magazine18h

Over a Third of Grafana Instances Exposed to XSS Flaw

Ox Security warned on Sunday that CVE-2025-4123 impacts 36% of public-facing Grafana instances – or over 46,000 worldwide – ...

Web framework Astro 5.9 arms itself against XSS attacks

Experimental support for CSP is intended to help secure Astro applications against cross-site scripting attacks. There are ...

1don MSN

Dems demand audit of CVE program as Federal funding remains uncertain

It’s a cross-site scripting vulnerability present in open-source webmail platform Roundcube, and abuses a desanitization ...

SecurityWeek6d

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers

Exploitation of a critical-severity RCE vulnerability in Roundcube started only days after a patch was released.

TechBooky12h

Over 46,000 Grafana Instances Vulnerable to Account Takeover

DevOps teams have been advised by security researchers to fix a high-severity vulnerability in Grafana, a widely used tool, ...

GitHub25d

DOM-Based XSS in all Date Input Fields Allow Arbitrary JavaScript Execution

A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the GroupOffice application, allowing attackers to execute arbitrary JavaScript code in the context of the victim's browser. This can ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results