Top
image credit: Pexels

Closure JavaScript Library introduced XSS issue in Google Search and potentially other services

April 2, 2019

Via: Security Affairs
Category:

A change made months ago in an open-source JavaScript library introduced a cross-site scripting (XSS) vulnerability in Google Search.

The Japanese security researcher Masato Kinugawa discovered an XSS vulnerability in Google Search that was introduced with a change made months ago in an open-source JavaScript library.

The library is named Closure and according to the expert it fails to properly sanitize user input.

Read More on Security Affairs

RELATED PUBLICATIONS

API sprawl: navigating the web of connectivity and security challenges
NIST updates Cybersecurity Framework after a decade of lessons
Giant leak reveals Chinese infosec vendor I-Soon is one of Beijing’s cyber-attackers for hire

Latest Publications

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia 
U.S. and Australian police arrested Firebird RAT author and operator
Chinese-Linked LightSpy iOS Spyware Targets South Asian iPhone Users
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!