ZDNet

Google working on new Chrome security feature to 'obliterate DOM XSS'

Google has created a new browser API that will help Chrome fight certain types of cross-site scripting (XSS) vulnerabilities, adding another level of protection at the browser level to keep users safe ...
TWCN Tech News

ERR_BLOCKED_BY_XSS_AUDITOR Google Chrome error

Sometimes even one line of missing code or a symbol can cause an entire web page not to load. This case is similar. In some cases, Google Chrome can throw an error ...
TechNewsWorld

Web-Based Worms: How XSS Is Paving the Way for Future Malware

I first became aware of cross-site scripting (XSS) nearly a decade ago. At the time, despite being an all too prevalent bug in Web applications, the risk posed by the flaw was of limited value. It was ...
Threat Post

Microsoft Releases Anti-XSS Web Protection Library

Microsoft has released an open-source Web Protection Library (WPL) to help developers protect web sites from cross-site scripting attacks. The WPL, which is a set of .NET assemblies, is being offered ...
CSOonline

XSS: The Spark to the AJAX Dynamite

This entry should serve as an introduction to the threat of cross site scripting and how they can be exacerbated by the use of AJAX. This is the first part of a multipart series where I will detail ...