Web Application Security
Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: PayPal Manager Admin Account Hijack
May 15 2014 03:51PM
Daniel Kester (dekester usgs gov)
Now that I think about it, we should make sure the WAFs are filtering this.
On Wed, May 14, 2014 at 06:48:19PM -0700, Mark Litchfield wrote:
> Date: Wed, 14 May 2014 18:48:19 -0700
> From: Mark Litchfield <mark (at) securatary (dot) com [email concealed]>
> Subject: PayPal Manager Admin Account Hijack
> To: webappsec (at) securityf. (dot) . [email concealed]
[ more ]
Copyright 2010, SecurityFocus