1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

eBay Fixes XSS Flaw in Subdomain

Discussion in 'Threatpost' started by RSS, Sep 8, 2015.

  1. RSS

    RSS New Member Member

    There was a cross-site scripting vulnerability in an eBay domain that could have allowed an attacker to steal users’ session cookies and take over their accounts. The company has removed the vulnerable page, according to the researcher who discovered the bug and disclosed it to eBay, Aditya Sood. The vulnerability existed on an eBay subdomain, […]

    Continue reading...

Share This Page