1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

eBay Fixes File Upload and Patch Disclosure Bugs

Discussion in 'Threatpost' started by RSS, Mar 30, 2015.

  1. RSS

    RSS New Member Member

    eBay has fixed a pair of security vulnerabilities in its site that could enable attackers to upload executable files disguised as benign file types, construct full path URLs and then point victims to them through drive-by download attacks. The first bug resulted from the failure of an eBay page to check the headers of image files uploaded by […]

    Continue reading...

Share This Page