Cross-Site Scripting and What It Means For You
May 1, 2015
There was some big news earlier this week that has literally impacted millions of sites. A very large cross-scripting vulnerability was detected that made a number of WordPress plugins very vulnerable.
So should you start panicking? Let’s take a closer look.
Who is Impacted?
More than 400 very popular plugins suddenly became vulnerable including WordPress SEO, All in One SEO Pack, WP eCommerce, and the list goes on. If you have a WordPress site, you very well may have one of these plugins.
What is Cross-Site Scripting?
All software has bugs. After all, people aren’t perfect, and neither is the technology they create. Cross-site scripting, or XSS, occurs when these bugs cause specific security issues.
Here’s why it is so scary. It allows attackers to add side script into your pages. If you end up with XSS vulnerability, attackers can start to bypass access controls. Once this harmful script is embedded, it can execute every time the page loads.
An almost endless array of problems can be caused, ranging from scraping sensitive information to malicious redirecting of your site visitors.
How to Prevent Cross-Site Scripting
One way to avoid such issues is to make sure your site is professionally maintained. When you have expert assistance, you can be sure that all of your plugins are up to date and running properly. Plus, your logs will be properly monitored and everything will be kept safe and secure.
Technology Aloha can provide these services and much more. If you’re not already thoroughly protected against XSS, contact us today to learn more. The good news is we can ensure that your website is safe and secure.
Founder + Executive Director
Marketing Strategy, Business Optimization & Web Development
Jillyn is a business process and strategy expert. She has nearly a decade of Fortune 100 experience and has spent the past six years helping small businesses and nonprofits expand their success. Along with the day-to-day operation of the Technology Aloha business and team, she stays involved with every project we work on.