Diaries by Keyword - SANS Internet Storm Center

Handler on Duty: Didier Stevens

Threat Level: green

Date	Author	Title
2025-01-23	Johannes Ullrich	XSS Attempts via E-Mail
2020-08-22	Guy Bruneau	VMware App Volumes patches address Stored Cross-Site Scripting (XSS) vulnerability - https://www.vmware.com/security/advisories/VMSA-2020-0019.html
2015-10-20	Bojan Zdrnja	When encoding saves the day
2015-06-25	Bojan Zdrnja	Web security subtleties and exploitation of combined vulnerabilities
2014-03-27	Alex Stanford	Mass XSSodus in PHP
2013-05-08	Johannes Ullrich	"De Flashing" the ISC Web Site and Flash XSS issues
2013-02-17	Guy Bruneau	HP ArcSight Connector Appliance and Logger Vulnerabilities
2013-02-11	John Bambenek	Is This Chinese Registrar Really Trying to XSS Me?
2013-02-04	Russ McRee	An expose of a recent SANS GIAC XSS vulnerability
2012-06-12	Johannes Ullrich	The bane of XSS
2012-05-22	Johannes Ullrich	nmap 6 released
2012-04-21	Guy Bruneau	WordPress Release Security Update
2012-03-07	Guy Bruneau	Reflected XSS in Splunk Web Affecting Version 4.0 to 4.3
2012-01-05	Russ McRee	WordPress 3.3.1 fixes 15 issues with WordPress 3.3 including XSS. Download 3.3.1 or visit Dashboard --> Updates in your site admin panel.
2011-08-24	Rob VandenBrink	Citrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971
2010-07-04	Bojan Zdrnja	Stored XSS vulnerability on YouTube actively abused?
2010-04-30	Kevin Liston	CVE-2010-0817 SharePoint XSS Scorecard
2010-02-06	Guy Bruneau	LANDesk Management Gateway Vulnerability
2010-02-02	Guy Bruneau	Cisco Secure Desktop Remote XSS Vulnerability
2009-07-10	Guy Bruneau	WordPress Fixes Multiple vulnerabilities
2009-04-13	Bojan Zdrnja	Twitter worm copycats
2009-04-12	Patrick Nolan	Twitter Worm(s)
2006-10-05	Swa Frantzen	MS06-053 revisited ?