Online shoppers at risk as Magecart skimming hits major payment networks

Researchers have been tracking a Magecart campaign that targets several major payment providers, including American Express, Diners Club, Discover, and Mastercard. Magecart is an umbrella term for criminal groups that specialize in stealing payment data from online checkout pages using malicious...

Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages

Cybersecurity researchers have discovered a major web skimming campaign that has been active since January 2022, targeting several major payment networks like American Express, Diners Club, Discover, JCB Co., Ltd., Mastercard, and UnionPay. "Enterprise organizations that are clients of these...

UnionPay Data Forgery Issue Vulnerability

UnionPay is an application system of China UnionPay Corporation UnionPay. A data forgery issue vulnerability exists in UnionPay for android versions prior to 3.4.93.4.9, which stems from not properly verifying cryptographic signatures, and can be exploited by an attacker to make free purchases on...

UnionPay android 数据伪造问题漏洞

UnionPay is an application system of China UnionPay Corporation UnionPay. A data forgery issue vulnerability exists in UnionPay for android versions prior to 3.4.93.4.9, which stems from not properly verifying cryptographic signatures, and can be exploited by an attacker to make free purchases on...

UnionPay IOS 数据伪造问题漏洞

UnionPay IOS is an application of China UnionPay Corporation UnionPay in China. Union Pay ios 3.3.12 suffers from a security vulnerability that originates from incorrectly verified password signatures, which can be exploited by an attacker to make free purchases on merchant websites and mobile ap...

open.unionpay.com XSS vulnerability

Vulnerable URL: https://open.unionpay.com/ajweb/help/search?category=aj=%22%3E%3Cimg+src%3Dx+onerror%3Dprompt%28%2FOPENBUGBOUNTY%2F%29%3E%22 Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 22:58 GMT Vulnerability type:| XSS Vulnerability status...

PayPal Inc Bug Bounty #114 - JDWP RCE Vulnerability

Document Title: =============== PayPal Inc Bug Bounty 114 - JDWP RCE Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1474 Video: http://www.vulnerability-lab.com/getcontent.php?id=1474 Release Date: ============= 2015-04-28 Vulnerability...

Popular iOS network communications library AFNetworking exposed SSL vulnerability, the impact of China UnionPay, Bank of China, Bank of communications, 2. 5 million iOS applications-vulnerability warning-the black bar safety net

A presence in the popular open source iOS network communications library AFNetworking in severe vulnerability that the Apple App Store 2 5 0 0 0 a iOS app in HTTPS traffic exposure in-the-middle（MITM attack. AFNetworking is a famous open source network library, to be able to developers in iOS and...

PayPal MultiOrder Shipping Cross Site Scripting

Document Title: =============== PayPal Inc BugBounty 107 MultiOrder Shipping API - Persistent History Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1048 PayPal Security UID: dq115aYq Release Date: ============= 2014-10-27 Vulnerability...

PayPal Inc iOS Mobile 4.6.0 Input Validation

Document Title: =============== PayPal Inc 86 iOS 4.6 - Validation & Design Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=915 PayPal Security UID: eff8aq Release Date: ============= 2014-09-30 Vulnerability Laboratory ID VL-ID:...

Paypal MOS API - Bypass & Persistent XML Vulnerability

Document Title: =============== Paypal MOS API - Bypass & Persistent XML Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1129 PayPal Security UID: TM13a2uL Release Date: ============= 2014-10-14 Vulnerability Laboratory ID VL-ID:...

PayPal Inc BB #59 - Persistent Mail Encoding Vulnerability

Document Title: =============== PayPal Inc BB 59 - Persistent Mail Encoding Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=844 PayPal Security UID: CabdfGa Release Date: ============= 2014-09-23 Vulnerability Laboratory ID VL-ID:...

China UnionPay maintenance improperly may lead to the presence of a random log on UnionPay account and the server to obtain sensitive information-vulnerability warning-the black bar safety net

China UnionPay there is the operation and maintenance improper vulnerability OpenSSL "heartbleed" security vulnerability sign.unionpay.com In heartbleed's official website related to the CVE-2 0 1 4-0 1 6 0 vulnerability details, This is about the OpenSSL information leak vulnerabilities to cause...

Paypal BBP #99 - Filter Bypass & Persistent Vulnerability

Document Title: =============== Paypal BBP 99 - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=984 PayPal Security UID: nj1071UU Release Date: ============= 2013-09-18 Vulnerability Laboratory ID VL-ID:...

Paypal BugBounty #13 - Mail Encoding Web Vulnerability

Document Title: =============== Paypal BugBounty 13 - Mail Encoding Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=650 PayPal Security UID: cga1a7oh Release Date: ============= 2013-06-17 Vulnerability Laboratory ID VL-ID:...

PayPal Ecommerce Script Insertion

Title: ====== Paypal BugBounty 13 - Mail Encoding Web Vulnerability Date: ===== 2013-05-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=650 VL-ID: ===== 650 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ============= PayP...

Paypal Bug Bounty #6 - Persistent Web Vulnerability

Document Title: =============== Paypal Bug Bounty 6 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=645 PayPal Security UID: ydh14ayfu Release Date: ============= 2013-03-27 Vulnerability Laboratory ID VL-ID:...

Paypal Bug Bounty #19 - Persistent Web Vulnerability

Document Title: =============== Paypal Bug Bounty 19 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=681 PayPal Security UID: ezb441cy Release Date: ============= 2013-03-02 Vulnerability Laboratory ID VL-ID:...

PayPal Cross Site Scripting

Title: ====== Paypal Bug Bounty 17 - Persistent Web Vulnerability Date: ===== 2013-01-28 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=671 PayPal UID: tlm30fdsh VL-ID: ===== 671 Common Vulnerability Scoring System: ==================================== 3 Introduction:...

Paypal Bug Bounty #21 - Persistent Encoding Vulnerability

Document Title: =============== Paypal Bug Bounty 21 - Persistent Encoding Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=684 Release Date: ============= 2012-11-24 Vulnerability Laboratory ID VL-ID: ==================================== 68...