Gallup cross-site scripting error could have led to data theft

Gallup has fixed two cross-site scripting (XSS) errors on its website that could have enabled data theft and account takeover, according to a report published by Checkmarx on Tuesday.The two flaws were due to lack of proper sanitization or encoding of certain query string parameters at certain…