dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
423
share rss forum feed


Cudni
La Merma - Vigilado
Premium,MVM
join:2003-12-20
Someshire
kudos:13

1 recommendation

Critical security vulnerability at Amazon fixed

from
»www.h-online.com/security/news/i···328.html
"..
The vulnerability could have been used to inject JavaScript code on the retailer's server that would be executed in another customer's browser when they opened the prepared page. This cross-site scripting (persistent XSS) allowed attacks on session cookies, which heise Security were able to use to access full names, email addresses and shopping carts in the course of their experiment. The vulnerability could also have been used to collect login data (phishing) or spread malware.
.."

caught in time, on this occasion

Cudni
--
"what we know we know the same, what we don't know, we don't know it differently."
Help yourself so God can help you.
Microsoft MVP, 2006 - 2012/13