Home/Tag/Xss

Xss

5 articles tagged with "Xss"

Vulnerabilities4 min read

Exchange OWA Zero-Day CVE-2026-42897 Exploited — No Patch

Microsoft Exchange Server zero-day CVE-2026-42897 enables session hijacking via malicious emails. Active exploitation confirmed with no permanent fix available.

Marcus ChenJun 1, 2026

Vulnerabilities3 min read

Exchange Server Zero-Day CVE-2026-42897 Exploited via Crafted Emails

Microsoft confirms active exploitation of CVE-2026-42897, an XSS flaw in Exchange OWA that executes JavaScript via malicious emails. No patch available yet.

Marcus ChenMay 16, 2026

Vulnerabilities4 min read

Cisco Prime Infrastructure XSS Flaw Targets Admins

CVE-2026-20111 enables stored cross-site scripting attacks against administrators of Cisco Prime Infrastructure network management systems.

Marcus ChenFeb 4, 2026

Malware4 min read

StealC XSS Flaw Let Researchers Monitor Malware Operators

CyberArk exploited a vulnerability in the StealC infostealer's control panel to identify threat actors, steal session cookies, and track an operator who compromised 5,000 victims.

James RiveraJan 17, 2026

Vulnerabilities4 min read

Angular XSS Flaw Bypasses Sanitization via SVG Script Tags

CVE-2026-22610 lets attackers inject JavaScript through SVG script attributes that Angular's sanitizer fails to recognize. Patches available for versions 19-21.

Marcus ChenJan 11, 2026