Chromium Proposes Deprecation and Removal of XSLT from Web Browsers Due to Security Risks
Contact emailsmas...@chromium.orgExplainerNoneSpecificationNoneSummaryXSLT v1.0, which all browsers adhere to, was standardized in 1999. In the meantime, XSLT has evolved to v2.0 and v3.0, adding…
Read the full articleYou might also wanna read
Cross-Site Scripting Protection Vanishing from Browsers
Google Chrome is following Microsoft and Mozilla in deprecating support for browser-based XSS filters given the difficulty of keeping them e
Red Hat Security Advisory: libxslt security update
A use-after-free vulnerability (CVE-2025-24855) was identified in the libxslt library, specifically in the numbers.c component. libxslt is u
2022 CSS Updates
It has been an extra jolly year for the advancement of CSS! Multiple long-awaited features were integrated into our evergreen browsers (Chro

Declarative Shadow DOM
What we are able to build using the web platform has gone into overdrive, especially in the last two years. Most of the action has been in t
Chromium and libxfont updates for Debian LTS
Debian Long Term Support released two security advisories, addressing critical flaws in Chromium and libxfont. The Chromium update patches 2
CVE-2026-55466: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in grokability snipe-it
Snipe-IT versions prior to 8.6.2 contain a cross-site scripting (XSS) vulnerability due to improper sanitization of SVG content. The UploadF

Comments
Sign in to join the conversation.
No comments yet. Be the first.