Researchers have discovered a “severe vulnerability” that allows attackers to use eBay to distribute malware, and the online auction company has no plans to fix the problem.

eBay users are not permitted to insert JavaScript code in their listings, to prevent scammers from installing malware or phishing programs on your device. However, eBay’s filters seem unable to catch JavaScript code generated using JSFuck, which creates working scripts using only six characters, and is able to sneak past the eBay filters.
Video: .
Since there isn’t a fix for this yet, all we can really tell you to do is… more


Go to Source

 

Comments are closed.