Shopify | Buy Button | Persistent Embed POST Inject Vulnerability
Submitted by Editorial_Staff_Team on Thu, 08/13/2015 - 19:54
Shopify - Embed POST Inject Vulnerability
Vulnerability Lab found a Persistent Embed POST inject Vulnerability in the official shopify.com web application. The vulnerability allows attackers to create a "Buy Button" including malicious code. By embeding this button on an external page or if the button is displayed within the shopify market the code gets executed.
POC Video: Shopify Bug Bounty - (Buy Button) Persistent Embed POST Inject Vulnerability
Reference(s):
Rate this article:
Today's Most Popular
All Time Most Popular
Most Commented Articles
Top Rated Articles
Recent comments
Editorial_Staff_Team
Teach51
Alejandra Tazewell
ZuTaMa
Timon
Syndicate
Comments
Obat Mujarab
Good quality and also it's website,interesting place to visit. Thank you!
Obat Eksim
I appreciate everything you have added to my knowledge base.Admiring the time and effort you put into your magazine and detailed information you offer.Thanks
Tersiram Air
Glad I could visit this blog. No tired of her constantly listening to the articles that you write. Keep the spirit
Jarab
an article which you discourse in indeed very useful, thank you so much
Askan Pendarahan
I really appreciate this blog, because the blog is so interesting and useful for me
telahOper
Regular visits to this blog, I am happy to listen to all your articles.
I don't know how often I
I don't know how often I visit this blog. What I know this blog is very useful to add to my knowledge. Thank you so much.
Yoshu
I discovered your website by means of Google while searching for a related topic, your website got here up. It appears good. I have bookmarked it in my google bookmarks to come back then.
Add new comment