Day: November 24, 2015

SSD Advisory – eBay Arbitrary Invoice Disclosure

Leave a Comment / Vulnerability publication / By

Vulnerability Description A vulnerability in the way invoices are handled by eBay allows users that sell items on eBay to view other’s reseller’s invoices. Though access to the invoice is somewhat arbitrary, there is no easy way to find a specific invoice of a specific seller, it is possible to harvest a large amount of …

SSD Advisory – eBay Arbitrary Invoice Disclosure Read More »

SSD Advisory – Media Wiki SVG XSS

Leave a Comment / Vulnerability publication / By

Introduction MediaWiki is a free software open source wiki package written in PHP, originally for use on Wikipedia. It is now also used by several other projects of the non-profit Wikimedia Foundation and by many other wikis, including this website, the home of MediaWiki. Vulnerable Version Media Wiki version 1.24.1 Vendor Response The vulnerability has …

SSD Advisory – Media Wiki SVG XSS Read More »

Get in touch

Any questions? Interested in our services? 

We’d love to hear from you

Contact US
Facebook Twitter Youtube Linkedin

?

HOME
THE
COMMUNITY
SCOPE
ADVISORIES
SUBMIT
CONTACT

?

Get in touch