December 2010
1 post
ebay phishing feckery
Well, I got bored the other night and decided to do a quick little test on the ebay uk sandbox and found some suprising results. By splitting up a script tag into a string you can easily write a script out to the page, to include other javascript files or various other things.
While this is all good and well for fancifying your ebay templates, it leaves the site vulnerable to phising attacks, I...