Google’s lessons in security: bring together security engineering and incident response

Last week during Google Next conference, we have heard an interesting talk where a google security PM, Andy Chang, explained what Google has learned from preventing, detecting and responding to cyber attacks over the years. Not surprisingly, Google is paying a lot of attention to securing the...

antiviruses.ru XSS vulnerability

Vulnerable URL: http://www.antiviruses.ru/search/?query="%3Csvg%2fonload%3Dalert%28%2fXSSPOSED%2f%29%3E=0=0 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...

Cross-browser Code Execution via XSS

Hello 3APA3A! Recently I wrote about cross-browser Code Execution via XSS attack http://websecurity.com.ua/2638/. Earlier I wrote you about Code Execution via XSS in Internet Explorer http://securityvulns.ru/Udocument911.html. In this article I told about Code Execution attack via IE via Cross-Si...

Code Execution via XSS in Internet Explorer

Hello 3APA3A! Recently I wrote about Code Execution via XSS attack http://websecurity.com.ua/2635/. In this article I told about Code Execution attack via Cross-Site Scripting vulnerability in Internet Explorer http://websecurity.com.ua/1241/, which I disclosed in August 2007. Last year and this...