DoJ Indicts 5 Individuals for $866K North Korean IT Worker Scheme Violations

Android's New Identity Check Feature Locks Device Settings Outside Trusted Locations

CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List

Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits

Beware: Fake CAPTCHA Campaign Spreads Lumma Stealer in Multi-Industry Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday placed a now-patched security flaw impacting the popular jQuery JavaScript library to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The medium-severity vulnerability is CVE-2020-11023 (CVSS score: 6.1/6.9), a nearly five-year-old cross-site scripting (XSS) bug that could be

Headline

CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List

The Hacker News: Latest News