A cross-site scripting (XSS) vulnerability in the Krpano framework has been exploited to inject malicious scripts into over 350 websites, manipulating search results and spreading spam. Discovered by researcher Oleg Zaytsev, the flaw involved improper handling of the “xml” parameter. Krpano has since released an updated version to address this issue, urging users to update and secure their configurations.
M&S aims for full online restoration within four weeks following major cyber attack
Summarize this content to a maximum of 60 words: M&S CEO Stuart Machin says the high street retailer plans to fully restore operations by August
