Blind SQL Injection vulnerability in PayPal Notifications website
Sabtu, 02 Februari 2013
0
komentar
An Indian Security Researcher Prakhar Prasad has discovered a Blind SQL Injection vulnerability in Paypal Notifications website(paypal-notify.com) that allowed
researcher to access database of Paypal notification system.
" As a part of Paypal Bug Bounty Program, I did a responsible disclosure of the bug to Paypal Security Team " The researcher said in his blog.
The PayPal security team patched the vulnerability immediately, just the next day after the Prasad's vulnerability report due to its high severity.
The Paypal security team patched the vulnerability and rewarded the researcher with $3000 for the SQLi and additional $350 for other less critical bugs on 21st January.
researcher to access database of Paypal notification system.
" As a part of Paypal Bug Bounty Program, I did a responsible disclosure of the bug to Paypal Security Team " The researcher said in his blog.
 |
| SQLMap displays the Database name after injection |
The PayPal security team patched the vulnerability immediately, just the next day after the Prasad's vulnerability report due to its high severity.
The Paypal security team patched the vulnerability and rewarded the researcher with $3000 for the SQLi and additional $350 for other less critical bugs on 21st January.
TERIMA KASIH ATAS KUNJUNGAN SAUDARA
Judul: Blind SQL Injection vulnerability in PayPal Notifications website
Ditulis oleh Unknown
Rating Blog 5 dari 5
Semoga artikel ini bermanfaat bagi saudara. Jika ingin mengutip, baik itu sebagian atau keseluruhan dari isi artikel ini harap menyertakan link dofollow ke http://androidbackupapps.blogspot.com/2013/02/blind-sql-injection-vulnerability-in.html. Terima kasih sudah singgah membaca artikel ini.Ditulis oleh Unknown
Rating Blog 5 dari 5
Categories:
BReaKIng NEws,
Hacking,
Hacking tools,
Virus
0 komentar:
Posting Komentar