Application attacks (buffer overflows, cross-site scripting)

Get the latest news and information on recognizing vulnerabilities and defending against application attacks and threats such as buffer overflows, cross site scripting, SQL injections.

New & Notable

Download this free guide

Your Guide to Info Sec Certifications

We’ve collected 30+ certifications for you. Which vendor-neutral and vendor-specific security certifications are best for you? Save time by downloading our list organized by experience level.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Application attacks (buffer overflows, cross-site scripting) News

December 29, 2016 29 Dec'16
Critical PHPMailer library vulnerability patched, and repatched

A bypass for the patch of a remote code execution vulnerability in the PHPMailer library prompted a second patch release for the popular library used by millions of websites.
December 07, 2016 07 Dec'16
Exploit kit delivered via malvertising targets unpatched systems

A malvertising campaign could put millions at risk of attack as the Stegano exploit kit is being delivered by this new method and is targeting unpatched systems.
November 08, 2016 08 Nov'16
Poor OAuth implementation leaves millions at risk of stolen data

Researchers find widespread risk for users of apps with insecure OAuth implementation, which could lead to attackers being able to access the data held within a vulnerable app.
October 07, 2016 07 Oct'16
Expired domains present an opportunity for malicious activity

Security researchers said expired domains and abandoned SDKs could present a way to hide malicious activity targeting vulnerable mobile devices.

View All News

Application attacks (buffer overflows, cross-site scripting) Get Started

Bring yourself up to speed with our introductory content

cross-site scripting (XSS)

Cross-site scripting (XSS) is a type of injection security attack in which an attacker injects data, such as a malicious script, into content from otherwise trusted websites. Continue Reading
cyberterrorism

According to the U.S. Federal Bureau of Investigation, cyberterrorism is any 'premeditated, politically motivated attack against information, computer systems, computer programs, and data which results in violence against non-combatant targets by ... Continue Reading
How to craft an application security strategy that's airtight

A solid application security strategy today must include varieties like cloud apps and mobile. Learn how to set application security policies and practices that keep hackers out. Continue Reading

View All Get Started

Evaluate Application attacks (buffer overflows, cross-site scripting) Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

Stop app attacks with a web application firewall

Web application firewalls are more essential than ever when it comes to halting app attacks. Learn what features and functions you should look for when choosing a new WAF. Continue Reading
Getting runtime application self-protection launched

A runtime application self-protection tool only sounds complicated. Buying and using a RASP tool, though, may prove a surprisingly simple way to amp up your application security. Continue Reading
Insider Edition: Secure web apps

Secure web apps are essential to business. Everyday interactions rely on them, which means security flaws in apps have serious ramifications for enterprises. Most studies conclude that more than half of web applications have critical security ... Continue Reading

View All Evaluate

Manage Application attacks (buffer overflows, cross-site scripting)

Learn to apply best practices and optimize your operations.

How are Linear eMerge E3 systems vulnerable to attacks?

ICS-CERT issued a warning about a new vulnerability in Nortek Linear eMerge E3 products. Discover what this vulnerability is and how it affects access control for enterprises. Continue Reading
CCleaner malware: How dangerous is it to enterprises?

A watering hole attack led to CCleaner malware being installed on millions of systems. Nick Lewis explains how the attack worked and why it should concern enterprises. Continue Reading
Dynamic application security testing, honeypots hunt malware

Stealth is an attacker's best friend, especially when it comes to sneaking malware past the firewall. Learn about some trusty tools that can stop malware in its tracks. Continue Reading

View All Manage

Problem Solve Application attacks (buffer overflows, cross-site scripting) Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How did an Electron framework flaw put Slack at risk?

An Electron framework flaw put users of Slack, Skype and other big apps at risk. Expert Michael Cobb explains how this remote code execution flaw works and how to prevent it. Continue Reading
How does a Magento Community Edition flaw allow remote attacks?

As the Magento Community Edition suffers a new zero-day vulnerability, expert Nick Lewis explains how it's being exploited and how to mitigate the cross-site request forgery flaw. Continue Reading
Incorporating static source code analysis into security testing

Static source code analysis, along with dynamic analysis and pen testing, can help strengthen your application security. Expert Kevin Beaver goes over the features to look out for. Continue Reading

View All Problem Solve