Times of India website vulnerable to Cross Site Scripting (XSS) attacks

Times of India website vulnerable to Cross Site Scripting (XSS) attacks

India’s premier daily and popular website, Times of India is vulnerable to critical cross site scripting (XSS) attacks.  Times of India which operates a website called indiatimes.com is a top news website in India and elsewhere.

 

 

 

817464-computer-security

 

 

 

The XSS vulnerability in the Times of India website was discovered by Wang Jing, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore.  He has found that the vulnerability occurs at Indiatimes’s URL links. Indiatimes only party filters the filenames in its website.  Jing says due to this almost all URLs under Indiatimes’s “Photogallery” and “Top-lists” topics are affected by this vulnerability.

 

 

 

Detail Link:
http://www.techworm.net/2014/12/times-india-website-vulnerable-cross-site-scripting-xss-attacks.html

Leave a comment

你的電子郵件位址並不會被公開。 必要欄位標記為 *

你可以使用這些 HTML 標籤與屬性: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>