W3C

All posts by Ted Guild

RXSS Security Audit Results

W3C recently submitted to a Web Application Penetration Test. It was conducted by researchers and testers of SBA Research within the context of Mobsetip research project and specifically targeted Reflected-Cross-Site-Scripting vulnerabilities using combinatorial testing methodologies. SBA Research approached W3C since the size of our website and the nature of our organization made for an interesting […]
More…

W3C Password Reset

As part of improving its infrastructure, W3C arranged an extensive penetration test by the security consulting firm Cure53. They found several different types of vulnerabilities including SQL Injection (SQLi). The W3C Systems Team determined these were used to gain unauthorized access to its user database and to harvest encrypted passwords. Since there is potential (with […]
More…