Infosecurity-magazine.com

ConnectWise Fixes XSS Vulnerability that Could Lead to Remote Code Execution

Remote monitoring and management (RMM) platform ConnectWise has patched a cross-site scripting (XSS) vulnerability that could lead to remote code execution (RCE). Security researchers at Guardio Labs ...
Threat Post

Apple AirTag Zero-Day Weaponizes Trackers

Apple’s personal item-tracker devices can be used to deliver malware, slurp credentials, steal tokens and more thanks to XSS. An unpatched stored cross-site scripting (XSS) bug in Apple’s AirTag “Lost ...
Bleeping Computer

CISA urges software devs to weed out XSS vulnerabilities

CISA and the FBI urged technology manufacturing companies to review their software and ensure that future releases are free of cross-site scripting vulnerabilities before shipping. The two federal ...