VRB News
Virtual Reality Brisbane
  • Home
  • About us
  • IT news
  • Tech
  • World
  • Contact
No Result
View All Result
  • Home
  • About us
  • IT news
  • Tech
  • World
  • Contact
No Result
View All Result
No Result
View All Result
Home IT news

Number of Websites through incorrect JavaScript components vulnerable

admin by admin
March 19, 2021
in IT news
0
0
SHARES
16
VIEWS
Share on FacebookShare on Twitter

To reach the conclusion, researchers from the Boston-based Northeastern University, according to the investigation of 133,000 Websites. Therefore, the error can be exploited under certain circumstances, to an old Cross-Site Scripting vulnerability in jQuery to inject malicious scripts in a web site.

Researchers from Northeastern University in Boston, studied 133.000 websites and found that 37 percent of them use at least one JavaScript library, in which a well-known is the weak point. With the current study, the researchers used the results of a 2014 study carried out, the potential safety had been identified risks due to the Load of outdated versions of JavaScript libraries, including jQuery and AngularJS Framework in the Browser.

Code Security (Image: Shutterstock)

This erroneous Libraries can be exploited under certain circumstances, a well-known Cross-Site Scripting exploit vulnerability in jQuery. About the attackers then possible, the scripts of your choice in a Website to inject. For their study, the researchers from Boston semi which, according to Amazon’s Alexa-list of 75,000 in the world’s most visited Sites as well as 75,000, randomly selected .com Domains examined. They examined 72 different Libraries, each in multiple versions. A total of 87 percent of the Sites, the Alexa list, and 46.5 percent of the randomly selected .com-Sites at least one of these libraries.

According to the study, 36.7% of the included jQuery scripts are vulnerable. The Angular Framework (40.1 per cent), Handlebars (86.6 percent) and YUI (87.3 percent), the values are still much higher. 9.7% of the analyzed Websites use two or more vulnerable libraries.

“The ernüchterndste a result of our investigation, the document is likely that the JavaScript Library Ecosystem, complex, disorganized, and what relates to Security – will operate Substantially in accordance with the ‘ad hoc’principle,” the researchers write. You criticize, that there was no reliable vulnerability databases and none of the vendors of the libraries operated Security Mailing lists out there. Also to be included in the Release Notes hardly any Details on safety aspects and it is very difficult for users is often very difficult, which Version of a particular, referred to in Chess actually is affected.

In addition, the majority of the Sites used completely outdated versions. So the Median in terms of the oldest and the most current Version is being used on a Website for about three years.

In their study, the researchers have also made available to the reasons for the disastrous Situation to find: Only a small fraction of the studied Sites (a maximum of 2.8 percent) could make all the well-known weak thereby get rid of that you can play the available, yet backwards-compatible Patch-Level Updates. The majority of the Rest of the sites would need to import in contrast, at least one library with a version jump, and, as a rule, compatibility problems, and as a result, additional Code Modifications are required.

Previous Post

Poor pay for developers in Germany

Next Post

The SteamVR update brings full support for OpenXR 1.0

admin

admin

Related Posts

How to Grow a YouTube Channel with ScaleLab
IT news

How to Grow a YouTube Channel with ScaleLab: Effective Strategies for Creators

February 4, 2025
Sticker mockups
IT news

Sticker mockups: how to visualize your ideas professionally and efficiently

January 13, 2025
Ways to Get Free Senegal Proxies for Work and Surfing
IT news

Ways to Get Free Senegal Proxies for Work and Surfing

December 24, 2024
Crypto Betting Frontiers
IT news

Crypto Betting Frontiers: The 2025 Landscape

December 6, 2024
iGaming Marketing Trends for 2025
IT news

iGaming Marketing Trends for 2025: Adapting to a Rapidly Changing Landscape

December 5, 2024
Next Post
The SteamVR update brings full support for OpenXR 1.0

The SteamVR update brings full support for OpenXR 1.0

Premium Content

Samsung Electronics, LG Electronics and Sony is more than 50% of LCD TV market in 2011

Samsung Electronics, LG Electronics and Sony is more than 50% of LCD TV market in 2011

July 3, 2020
The Benefits and Future Applications of Artificial Intelligence in Business

The Benefits and Future Applications of Artificial Intelligence in Business

January 23, 2024

New Oculus Rift prototype: Crescent Bay

August 25, 2022

Browse by Category

  • Games
  • IT news
  • Tech
  • World

VRB News is ready to cooperate with webmasters and content creators. Send an email to info@virtualrealitybrisbane.com

Categories

  • Games
  • IT news
  • Tech
  • World

Recent Posts

  • How to Grow a YouTube Channel with ScaleLab: Effective Strategies for Creators
  • Sticker mockups: how to visualize your ideas professionally and efficiently
  • Ways to Get Free Senegal Proxies for Work and Surfing

© 2023 - The project has been developed ServReality

No Result
View All Result
  • Home
  • About us
  • IT news
  • Tech
  • World
  • Contact

© 2023 - The project has been developed ServReality

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?