A group of German researchers from the Ruhr University (Bochum) and the Hochschule Niederrhein have discovered 14 types of XS-Leaks attacks that affect all major browsers. Cross-site attacks are not new, but the academic researchers showed how many types of XS-Leaks are still unclassified and unresolved. I would like to implore W. members who decide to post their test not to cheat. So please do it only once, with the browser in daily browsing conditions. TH. https://xsinator.com/ With Edge (OS W.10) I have 3 vulnerabilities: History Length Leak Frame Count Leak COOP Leak With Firefox (OS Linux) I have 2 vulnerabilities: Frame Count Leak COOP Leak
OnWin10 with Opera and Adguard I registered a bucketful of 'leaks', around 20, but I've no idea whether this is normal browser behaviour or not?
But I wonder how serious the risk is from cross site scripting (XSS) attacks. In 25 years of surfing the web, I don't think I have ever been affected by this type of stuff. So these type of tests are barely interesting to me, but perhaps I'm underestimating the risk?
Many, many leaks. Firefox and Edge.Dev. I didn't bother to count but it seemed the red findings were approaching the green ones in number. I did not panic nor try to analyze the results into something I needed to act on immediately--like install yet another software trinket for "security's" sake. Status quo. This is highly esoteric but worth watching to see if anything further develops.
To be fair. Just because one isn’t affected by something doesn’t mean it isn’t a problem. I have never been infected by ransomware. That doesn’t mean it isn’t a issue that affects thousands. If it wasn’t, then Microsoft would not have bother to protect users against it.
No I agree, but I'm trying to figure out how big the threat is. I have never been infected with malware in the last 20 years or so, but I know that the threat is out there and it's real. But I'm not so sure about XSS.
Same as yours using latest Firefox on Windows 11. Edit same results on Firefox running on Linux MX-21. Eight of the tests timed out, just as on Windows platform.
