Powersellersunite Power Sellers Unite
Bringing Buyers and Sellers Together
 

eBay Security Vulnerabilities Found by Researcher
Click here to go to the original topic

 
       Power Sellers Unite Forum Index -> Ebay Auction Site Discussion
::  
Author Message
elgato



Joined: 24 Feb 2005
Posts: 17237
Location: Texas
Posted: Fri Feb 19, 2010 10:30 am    Post subject: eBay Security Vulnerabilities Found by Researcher  
eBay is working to patch a cross-site request forgery vulnerability recently uncovered by a security researcher. The Avnet researcher also discovered cross-site scripting and blind SQL injection bugs in eBay's online auction site, which eBay has fixed.

eBay is working on a fix for a cross-site request forgery problem that could allow an attacker to change a user's password and get access to that user's account.

The vulnerability is one of several affecting eBay that were recently uncovered and shared with eWEEK by Nir Goldshlager, a researcher with Avnet Information Security Consulting. Among the vulnerabilities are cross-site scripting bugs in the eBay Live Help support page and eBay To Go, which the company fixed by validating user input. In addition, Goldshlager uncovered a blind SQL injection problem in the eBay donations Website.

more.. link to news article
Back to top  
MARV56



Joined: 03 Dec 2009
Posts: 18
Posted: Sun Feb 21, 2010 5:37 am    Post subject: Re: eBay Security Vulnerabilities Found by Researcher  
I seriously doubt these are glitches but rather deliberate attempts by ebay to carry out one of their nefarious schemes.. Ebay/paypal seem to be out of control.

HERE IS THE SOLUTION

Take a few minutes now and follow these very simple instructions and you can be guaranteed things at ebay and paypal will change very quickly.

1. Look up the money ebay paid your congressman on the youtube video "ebay buys congress"

The youtube video list all money ebay paid to every congressman and can be found at:
http://www.youtube.com/watch?v=bU2mMCMyASk

2. Look up your congressman address (each state has 2 senators) at:
http://www.senate.gov/general/contact_information/senators_cfm.cfm

3. Contact your senators by email and phone and follow it up with a written letter. Tell them and tell up front you know they take money from ebay (which owns paypal). Tell them how much they took in the last elections. Explain your problems with ebay and paypal. Ask your congressmen to stop taking ebay money and start taking legal actions against ebay/paypal.

4. Insist on a written response.

5. Twitter, post, link and email the link to the video and encourage everyone to act.

Do this and things will change for the better very quickly and that is a GUARANTEED FACT.

If you can't take a few minutes to twitter, post email, call or write things will only get worse. The Constitution of the United States vest all power over the government with the people, not congress. The congress is only there to represent the people. Only you have the power to make a change.
Back to top  
 
       Power Sellers Unite Forum Index -> Ebay Auction Site Discussion
Page 1 of 1




Powered by phpBB © 2001, 2002 phpBB Group