Ebay XSS vulnerability

 

Hello Friends, Recently I found Cross Site Scripting vulnerability inside Ebay.

The vulnerability exist in ebay sell page 'add photos' field.

Payload:<img src=x onmouseover=alert("XSS")>




I reported this to ebay. Ebay fixed this vulnerability and 'Thanks' me.

It is my great pleasure to inform you that Ebay has listed me into it's Hall of fame for security researchers who have reported high risk vulnerabilities to Ebay.

You can find my name listed in Ebay Security researchers Hall of Fame here.



Comments

Popular posts from this blog

XSS in Zoho Mail

A Tricky Open Redirect

Email Spoofing for Beginners