HTML5 Web Security

December 7, 2011; Michael Schmidt

About HTML5 as the new upcoming Web standard is being talked and discussed. We are also dealing with HTML5, especially the security relevant aspects. We are making a part of our research work in the HTML5 security area publicly available. Feel free to download and distribute it.

Links:	http://media.hacking-lab.com/hlnews/HTML5_Web_Security_v1.0.pdf

News

Vulnerabilities in Projectfork and ohanah (Joomla Extension)
6/4/13 - Stefan Horlacher identified several vulnerabilities.

Vulnerability in ALFContact (Joomla Extension)
5/15/13 - Stefan Horlacher identified Cross-Site-Scripting Vulnerability

jNews Core (joomla Extension) - Multiple XSS Vulnerabilities
5/6/13 - Stefan Horlacher identified multiple XSS Vulnerabilities.

Web vulnerabilities in Remository, HikaShop and Real Estate Manager
4/9/13 - Stefan Horlacher identified several web vulnerabilities in different products und frameworks.

Web vulnerabilities in AcyMailing, FLEXIcontent, jDownloads and K2
4/9/13 - Stefan Horlacher identified serveral web vulnerabilities in different products and frameworks.