11 matches found
EUVD-2012-5674
Malware in sbrugna...
Security feature bypass
Commerce Skrill Formerly Moneybookers has an Access bypass vulnerability in all versions prior to 7.x-1.2...
CVE-2013-1924
The CVE-2013-1924 vulnerability affects the Commerce Skrill (Formerly Moneybookers) contributed module for Drupal, with an access bypass in the IPN processing that could allow forged notifications to be accepted. It affects all versions prior to 7.x-1.2; Drupal core is not affected. The fix is to...
Multiple SQL Injection Vulnerabilities in Moneybookers Online Lending System
The P2P P2B/P2C network lending platform software is a comprehensive network lending business management system designed and developed for a variety of microfinance network lending models including P2P, P2B/P2C business models. There are multiple SQL injection vulnerabilities in the Moneybookers...
CVE-2012-5794
The MoneyBookers module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
Design/Logic Flaw
The MoneyBookers module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2012-5794
The MoneyBookers module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2012-5794
The vulnerability CVE-2012-5794 affects the MoneyBookers module in osCommerce, where hostname verification for SSL certificates is not performed against the CN or subjectAltName. This enables MITM-style spoofing of SSL servers using an arbitrary valid certificate. The connected documents do not p...
Anonymous Claims Responsibility for Moneybookers Attack
Anonymous, a loosely affiliated group of Internet vigilantes, has claimed responsibility for various Internet attacks against organizations perceived as hostile to WikiLeaks. Today, the group sought to portray itself as more focused on symbolic protest rather than outright disruption. These claim...
Anonymous Launches Fax-Based Attack on WikiLeaks Opponents
"Operation Payback" is evolving, as attackers have initiated a fax-based campaign against companies that severed ties with WikiLeaks. Hacktivists from the group "Anonymous" are urging members to send faxes to Amazon, MasterCard, PayPal, Visa, Tableau Software, and Moneybookers. This action aims t...
Second Dutch Teen Arrested Over Pro-WikiLeaks Cyber Attacks
Police in the Netherlands have arrested a second teenager in connection with the pro-WikiLeaks distributed denial-of-service DDoS attacks seen earlier this week. The arrest of the 19-year-old man follows Friday's attacks on websites belonging to the Dutch Police and the national prosecutor's...