DOM-based XSS Vulnerability Affected 685 Million Users of Tinder, Shopify, Western Union, and Imgur

13 October 2018

DOM-based XSS also called as type-0 XSS, this vulnerability allows an attacker to craft a malicious URL and if the URL visited by another user, then the javascript will be executed in the user’s browser. It allows an attacker to steal victim’s session token, login credentials, performing arbitrary actions and to capture the keystrokes.

Read full news article on GBHackers

Date:

13 October 2018

Categorie(s):

NEWS

Tag(s):

Imgur, Internet, Million, Security Pro, Shopify, Tinder, Users, Vulnerability, XSS

Celebrating our 12th Anniversary at RSA conference 20245 May 2024
Offensive Awakening: The 2024 Shift from Defensive to Proactive Security5 May 2024
End-to-end encryption may be the bane of cops, but they can’t close that Pandora’s Box5 May 2024
Week in review: PoCs allow persistence on Palo Alto firewalls, Okta credential stuffing attacks5 May 2024
Navigating the Digital Age: AI’s Crucial Role in Cybersecurity Reinforcement5 May 2024