1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Online advertising company fixes severe XSS flaw

Discussion in 'Network World' started by RSS, Jan 27, 2016.

  1. RSS

    RSS New Member Member

    An online advertising company has fixed a vulnerability in its platform that could have allowed hackers to steal information from a large number of users.

    The cross-site scripting (XSS) flaw in the platform of PublicityClerks was found by a U.K. security researcher who goes by the handle CEHSecurity on Twitter.

    Cross-site scripting flaws are one of the most common faults in websites. They allow an attacker to inject malicious code into a website, which then can be used to steal data and for other attacks.

    "As soon as we were aware of the issue, we fixed it ASAP and ensured our advertisers and publishers were not affected," said James Hakim, PublicityClerks' founder and CEO.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page