Full Disclosure mailing list archives
eBay Security Assessment
From: cosmin0maier () gmail com
Date: Mon, 15 Jun 2015 22:40:26 +0200
Web Application Security Report m.ebay.com Multiple Vulnerabilities [1]: Cross-site Scripting - Stored XSS The iOS, Android application and m.ebay.com website has a section called “Followed Search” These followed search, by default, are pre-defined links to sections of eBay. It is possible for a user to edit the list of followed search and to add their own [2]: HTML Injection Full report available: https://drive.google.com/file/d/0ByfzEW9It8o6WGN2NGJwa3h5cmc/view?usp=sharing Sent from my iPhone _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Current thread:
- eBay Security Assessment cosmin0maier (Jun 15)