Read the original article: XSS vulnerability affects government websites
An undisclosed Cross-Site Scripting (XSS) vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASA, BleepingComputer reported today. Although 90 days have elapsed since the vulnerability was reported and patched, BleepingComputer is not aware of a formal disclosure made by the project.Security researcher Jackson Henry of the Sakura Samurai ethical hacking group […]
The post XSS vulnerability affects government websites appeared first on IT Security Guru.
Read the original article: XSS vulnerability affects government websites