XSS Archives

Hackers Exploited XSS Vulnerability in Popular Framework to Hijack 350+ Websites

Kaaviya - February 27, 2025

A cross-site scripting (XSS) vulnerability within the Krpano framework, a popular tool for embedding 360° images and creating virtual tours, has been exploited to inject malicious scripts into over 350 websites. This widespread campaign...

Roundcube XSS Vulnerability Let Attackers Inject Malicious Files

Kaaviya - February 4, 2025

A critical Cross-Site Scripting (XSS) vulnerability, tracked as CVE-2024-57004, has been discovered in Roundcube Webmail version 1.6.9. This flaw allows remote authenticated users to upload malicious files disguised as email attachments, posing significant risks to...

XSS

Hackers Exploited XSS Vulnerability in Popular Framework to Hijack 350+ Websites

Roundcube XSS Vulnerability Let Attackers Inject Malicious Files

Supply Chain Attack Prevention

Recent Posts

Hackers Abuse Cloudflare Tunnel Infrastructure to Deliver Multiple RATs

Malicious npm Packages Attacking Linux Developers to Install SSH Backdoors

FBI Warns of Scammers Mimic as IC3 Employees to Defraud Individuals

New Magecart Attack With Malicious JavaScript Steals Credit Card Data

Beyond SSL: Advanced Cyber Security Tools Every eCommerce Site Needs