Finding Known Exposures of the Anti-XSS library from Microsoft?

How do I keep abreast of known security exposures when using Anti-XSS library from Microsoft?

I see a security exposure of using the Anti-XSS library from Microsoft in that hackers. If they can crack that library, then millions of sites are exposed.

Where can I keep current for exposures so at least I can look for other ways to remediate such an exposure? Or, at least be made on the lookout for an update from Microsoft?

For example, I found this exposure, but it's 6 years old.

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2012/ms12-007

How do I get a list of only these exposures?

Thanks.
newbiewebSr. Software EngineerAsked:
Who is Participating?
 
btanExec ConsultantCommented:
For Microsoft, there is security bulletin that you can subscribe
https://technet.microsoft.com/en-us/security/dd252948.aspx
By far, AntiXSS has only this known vulnerability and patch release (you can always search based on the name (AntiXSS) to see listing
https://technet.microsoft.com/en-us/security/bulletins
Another worth noting is the tracking of product and CVE. You should subscribe to the solution that you are using and need to be kept updated on the release. Get their feeds accordingly. Overall, if you need CVE summary, here is one nice listing that you can get feeds too.
https://www.cvedetails.com/top-50-products.php
0
 
newbiewebSr. Software EngineerAuthor Commented:
thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.