Critical PayPal XSS vulnerability left accounts open to attack

Critical PayPal XSS vulnerability left accounts open to attack - welcome to our blog that presents the full content How Gadget, the discussion this time we're discussing that you find that Critical PayPal XSS vulnerability left accounts open to attack, we have provided complete information with images that are easy to understand, the explanation is simple but complete, therefore please read until the end :)

This is about : Critical PayPal XSS vulnerability left accounts open to attack
And this article : Critical PayPal XSS vulnerability left accounts open to attack

You can also see our article on:


    Critical PayPal XSS vulnerability left accounts open to attack

    insecure_paypal
    PayPal has patched a security vulnerability which could have been used by hackers to steal users' login details, as well as to access unencrypted credit card information. A cross site scripting bug was discovered by Egyptian 'vulnerabilities hunter' Ebrahim Hegazy -- ironically on PayPal's Secure Payments subdomain.
    Hegazy found the Stored XSS Vulnerability on https://Securepayments.Paypal.com back in the middle of June, and was able to demonstrate how it could be exploited. More than two months later, PayPal has addressed the issue and plugged the security hole.
    Describing himself as an 'ethical hacker', Hegazy reported his discovery to PayPal on 16 June. He found that it was possible to engineer an HTML page that intercepted data entered on a secure PayPal page and transmit it to another server as plain text. This information was then available for exploitation in whatever way the attacker saw fit. Worryingly, Hegazy says that it would be possible for all of this to happen invisibly in the background -- a victim could make a regular PayPal payment which would clear, but there could also be an extra payment made to the attacker.
    The bug was reported through PayPal's bug bounty program, and Hegazy praised the company for responding to emails quickly. As well as ensuring that the security flaw was fixed, he also managed to bag himself PayPal's top bounty reward of $750 for his troubles.
    If you're interested to see how the vulnerability worked, check out the video below where Hegazy explains it all:


    Information Critical PayPal XSS vulnerability left accounts open to attack has been completed we present

    A few of our information about the Critical PayPal XSS vulnerability left accounts open to attack, we hope you benefit from this article

    You have just read the article Critical PayPal XSS vulnerability left accounts open to attack and many articles about gadget in our blog this, please read it. and url link of this article is https://howtomonetizeeverything.blogspot.com/2015/08/critical-paypal-xss-vulnerability-left.html Hopefully discussion articles on provide more knowledge about the world of tech gadgets.

    Tag :

    Related Posts :

    • SOME AWESOME TRICKS THAT CAN BE USED IN SCHOOLS,COLLEGES & OFFICES ;D ENJOY,,,,!!! Email This BlogThis! Share to Twitter Share to Facebo… Read More...
    • CONVERT ANY TEXT INTO VOICE GO2 RUN type control speech Write Any Text it'll be converted to Voice. enjoy friends Anand … Read More...
    • IS YOU COMPUTER TOO SLOW,,,,,!!! Here Are Some Solutions,,,,!!! Temporary files Step 1. GO to run then type %temp% Step 2. Delete all t… Read More...
    • Nokia N73 Unlocked Cell Phone ReviewNokia N73 Unlocked Cell Phone The Nokia N73 unlocked cell phone provides users with choices of carrier options. When it was i… Read More...
    • NOKIA N72 and above help tips NOKIA N72 and Above There is Nothing Remaining NowGo ahead Explore ur N series All Compiled for YouOther articles• Mixed Bag (Good) • Mob… Read More...

    0 Response to "Critical PayPal XSS vulnerability left accounts open to attack"

    Post a Comment