Samsung Galaxy Note, 4G LTE Plans, Transfer Photos Videos from iPhone to Samsung, Network Performance, Mobile Accounts, Furious Gold SPD TooL, Latest Version Full Setup

Info Critical PayPal XSS vulnerability left accounts open to attack

Info Critical PayPal XSS vulnerability left accounts open to attack - this blog we have built from a few years ago and already very much information about gadgets that we convey and a lot of blog visitors New Blog Techno News who are satisfied with the information, we will always try to update the latest information for you, first about Info Critical PayPal XSS vulnerability left accounts open to attack many already we collect data to make this article so you do not miss the news, please see:

Articles : Info Critical PayPal XSS vulnerability left accounts open to attack
full Link : Info Critical PayPal XSS vulnerability left accounts open to attack

You can also see our article on:


Info Critical PayPal XSS vulnerability left accounts open to attack

insecure_paypal
PayPal has patched a security vulnerability which could have been used by hackers to steal users' login details, as well as to access unencrypted credit card information. A cross site scripting bug was discovered by Egyptian 'vulnerabilities hunter' Ebrahim Hegazy -- ironically on PayPal's Secure Payments subdomain.
Hegazy found the Stored XSS Vulnerability on https://Securepayments.Paypal.com back in the middle of June, and was able to demonstrate how it could be exploited. More than two months later, PayPal has addressed the issue and plugged the security hole.
Describing himself as an 'ethical hacker', Hegazy reported his discovery to PayPal on 16 June. He found that it was possible to engineer an HTML page that intercepted data entered on a secure PayPal page and transmit it to another server as plain text. This information was then available for exploitation in whatever way the attacker saw fit. Worryingly, Hegazy says that it would be possible for all of this to happen invisibly in the background -- a victim could make a regular PayPal payment which would clear, but there could also be an extra payment made to the attacker.
The bug was reported through PayPal's bug bounty program, and Hegazy praised the company for responding to emails quickly. As well as ensuring that the security flaw was fixed, he also managed to bag himself PayPal's top bounty reward of $750 for his troubles.
If you're interested to see how the vulnerability worked, check out the video below where Hegazy explains it all:



articles Info Critical PayPal XSS vulnerability left accounts open to attack finished in discussion

hopefully the information we convey about Info Critical PayPal XSS vulnerability left accounts open to attack can benefit you in getting new knowledge about technology,

you just finished reading the information Info Critical PayPal XSS vulnerability left accounts open to attack we hope this informmation can answer the question you submit to googlle, if you want to bookmark or share please use link https://moymoycikukecik.blogspot.com/2015/08/info-critical-paypal-xss-vulnerability.html and do not forget to always visit this blog to get the latest information every day.

Tag :
Share on Facebook
Share on Twitter
Share on Google+
Tags :

Related : Info Critical PayPal XSS vulnerability left accounts open to attack

0 komentar:

Posting Komentar