Web Application Security
Shopify (Bug Bounty) - XML External Entity Vulnerability Feb 17 2014 08:10AM
Mark Litchfield (mark securatary com)
Shopify suffered from an XXE attack within their online stores domain -

They were extremely quick in confirming and fixing the issue (even
though it was a Sunday).

Full details with the usual screen shots can be found at

All the best

Mark Litchfield
Twitter - http://twitter.com/securatary

This list is sponsored by Cenzic
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus