https://cybercrime.club/tags/xss/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usFri, 15 May 2026 23:09:26 -0400https://cybercrime.club/posts/exchange-server-cve-2026-42897-owa-xss-zero-day-spoofing/Fri, 15 May 2026 23:09:26 -0400https://cybercrime.club/posts/exchange-server-cve-2026-42897-owa-xss-zero-day-spoofing/Microsoft confirms in-the-wild exploitation of an unpatched XSS spoofing flaw in on-prem Exchange Server 2016, 2019, and Subscription Edition. Mitigation is automatic only if EEMS is enabled.vulnerability