SC Magazine – (International) XSS, password flaws found in popular ESPN app. Researchers found a cross-site scripting (XSS) coding flaw in the ESPN SportsCenter mobile phone application that could leave its users' information vulnerable to third-party exposure.