Ebay XSS vulnerability

Hello Friends, Recently I found Cross Site Scripting vulnerability inside Ebay.
The vulnerability exist in ebay sell page 'add photos' field.
Payload:<img src=x onmouseover=alert("XSS")>

I reported this to ebay. Ebay fixed this vulnerability and 'Thanks' me.
It is my great pleasure to inform you that Ebay has listed me
into it's Hall of fame for security researchers who have reported high
risk vulnerabilities to Ebay.
You can find my name listed in Ebay Security researchers Hall of Fame here.
Comments
Post a Comment