Earlier in the year, I discovered an XSS vulnerability in the Selling Manager section of the eBay.
The problem was caused by improper escaping of the URL’s GET parameters, which were reflected back on on the page. When choosing the “drafts” section of the session manager, I noticed that several parameters appeared in the URL
more here..........https://redfern.me/ebay-xss/
The problem was caused by improper escaping of the URL’s GET parameters, which were reflected back on on the page. When choosing the “drafts” section of the session manager, I noticed that several parameters appeared in the URL
more here..........https://redfern.me/ebay-xss/