Vulnerability to www.paypal.com
Page 1 of 1
Vulnerability to www.paypal.com
There was found Insufficient Anti-automation vulnerabilities at http://www.paypal.com - site of the famous electronic payment system PayPal. Although PayPal and declares that
monitors the safety of their own sites, but need protection from Insufficient Anti-automation they did not heed.
Regarding sites of electronic payment systems last time I wrote about the vulnerability of WebMoney.ru.
Insufficient Anti-automation:
https: / / www.paypal.com/cgi-bin/webscr?cmd=_registration-run
https: / / www.paypal.com/ewf/f=pps_spf
Registration forms and contact do not protect against automated queries (captcha). Although the registration for some countries may require PayPal SMS-validation (which can be a
protection against automated attacks, but only for some countries), the contact form in case of no limits.
monitors the safety of their own sites, but need protection from Insufficient Anti-automation they did not heed.
Regarding sites of electronic payment systems last time I wrote about the vulnerability of WebMoney.ru.
Insufficient Anti-automation:
https: / / www.paypal.com/cgi-bin/webscr?cmd=_registration-run
https: / / www.paypal.com/ewf/f=pps_spf
Registration forms and contact do not protect against automated queries (captcha). Although the registration for some countries may require PayPal SMS-validation (which can be a
protection against automated attacks, but only for some countries), the contact form in case of no limits.
andry- Moderator
- Posts : 467
Join date : 2010-05-07
Similar topics
» eBay Motors XSS vulnerability
» Don't trust on PayPal.
» Apocalyptic Vulnerability Percentages - FUD 101
» Microsoft IIS 0Day Vulnerability
» Vulnerability to Firebook
» Don't trust on PayPal.
» Apocalyptic Vulnerability Percentages - FUD 101
» Microsoft IIS 0Day Vulnerability
» Vulnerability to Firebook
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum