Security News > 2015 > September > eBay Fixes XSS Flaw in Subdomain (Threatpost)
2015-09-08 15:41
There was a cross-site scripting vulnerability in an eBay domain that could have allowed an attacker to steal users’ session cookies and take over their accounts. The company has removed the vulnerable page, according to the researcher who discovered the bug and disclosed it to eBay, Aditya Sood. The vulnerability existed on an eBay subdomain, […]
News URL
http://threatpost.com/ebay-fixes-xss-flaw-in-subdomain/114562/