Hackers Exploit HTTP/2 Flaw to Launch Arbitrary Cross-Site Scripting Attacks

A groundbreaking study from Tsinghua University and Zhongguancun Laboratory has uncovered critical vulnerabilities in modern web infrastructure, revealing that HTTP/2 server push and Signed HTTP Exchange (SXG) features can be exploited to bypass the Same-Origin Policy (SOP)—a cornerstone of web security. The SOP is designed to prevent malicious scripts on one website from accessing sensitive […]

The post Hackers Exploit HTTP/2 Flaw to Launch Arbitrary Cross-Site Scripting Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The original article found on GBHackers Security | #1 Globally Trusted Cyber Security News Platform Read More

Related Posts

Could Ransomware Survive Without Cryptocurrency?

“Power Parasites” Phishing Campaign Targets Energy Firms and Major Brands

Cisco Identity Services RADIUS Vulnerability Allows Attackers to Trigger Denial of Service Condition