Tech Radar reported yesterday that researchers have discovered another way to conduct a Cross-Site scripting attack - this time it targets DNN via SVGs. It requires a couple of things to align in order to work, but we recommend you look at the DNN sites you manage and remove SVG from the list of allowed extensions, if you haven't already done so. Hackers ruin all the good things... [Read the Article](https://www.techradar.com/pro/security/chaining-vulnerabilities-is-the-hallmark-of-a-sophisticated-attack-750-000-websites-must-be-patched-as-microsofts-popular-open-source-dotnetnuke-cms-hit-by-an-xss-flaw-that-allows-attackers-to-hijack-admin-sessions-and-take-over-entire-web-servers) Good Luck, Kelly