InfoWorld

Persistent XSS flaws patched in multiple WordPress plugins

In addition to the All-in-One SEO plugin, WordPress administrators should update others that also have a cross-site scripting flaw Earlier this week, WordPress administrators were urged to update to ...
Bleeping Computer

Bug in WordPress Live Chat Plugin Lets Hackers Inject Scripts

Site admins using WP Live Chat Support for Wordpress are advised to update the plugin to the latest version to close a persistent cross-site scripting (XSS) vulnerability that can be abused without ...
Dark Reading

'Ardilla' Automatically Roots Out SQL Injection And XSS, Generates Attacks

Researchers have built a tool that automatically finds and exploits SQL injection and cross-site scripting vulnerabilities in Web applications. The so-called Ardilla tool uses a technique developed by ...