2 matches found
SA-CONTRIB-2010-064 - Ubercart MIGS Payment Gateway - Web Parameter Tampering
The Ubercart MIGS Payment Gateway module provides support for the MIGS 3rd-party payment gateway used by ANZ, Commonwealth Bank, Bendigo Bank, and various other banks worldwide for payment processing. This module was susceptible to web parameter tampering which allowed users to bypass paying the...
commbankXSS.txt
-- A quick note before the advisory -- During my conversations with the Commonwealth Bank 'Group IT Security' department, they have promised to undertake a full audit of the NetBank, CBA website and other existing pages in an effort to stamp out all Cross-Site-Scripting XSS vulnerabilities in the...