Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Netcraft.com: PayPal XSS Exploit available for two years?
Jul 21 2006 03:29PM
Daniel Jimenez (dgj1menez hotmail com)
PayPal XSS Exploit available for two years?
Posted by Paul Mutton at 12:44 PM UTC on Jul 20, 2006
The cross-site scripting (XSS) vulnerability, which was harnessed by
fraudsters to execute a convincing phishing attack against PayPal users, may
have been exploitable for two years previously.
[ more ]
Copyright 2010, SecurityFocus