#SoftwareWeaknesses

MITRE Updates List of 25 Most Dangerous Software Vulnerabilities

by

November 21, 2024 at 08:45AM MITRE has updated its CWE Top 25 Most Dangerous Software Weaknesses list, highlighting cross-site scripting (XSS) as the most critical vulnerability. The announcement was featured in a post on SecurityWeek. **Meeting Notes Takeaways:** 1. **Update Release:** MITRE has published an updated list of the CWE Top 25 Most Dangerous Software … Read more

CISA urges software devs to weed out XSS vulnerabilities

by

September 17, 2024 at 12:46PM CISA and the FBI advised technology manufacturers to review software for cross-site scripting vulnerabilities before shipping and implement secure-by-design practices to eliminate such flaws entirely. They recommended input validation, output encoding functions, code reviews, and adversarial testing to prevent XSS vulnerabilities in future software releases. This warning is part of … Read more