Wednesday, May 21, 2008

PayPal XSS Vulnerability Undermines EV SSL Security

[EV is useless any way ]A security researcher in Finland has discovered a cross-site scripting vulnerability on paypal.com that would allow hackers to carry out highly plausible attacks, adding their own content to the site and stealing credentials from users.

read more | digg story

No comments: