eBay redirection ruse reloaded

A redirection script error on eBay's site remains open to abuse 18 months after The Register first reported it.

The flaw actively exploited in phishing scams since February 2005 creates a means to make fraudulent emails look more convincing.

Shortly after publishing a report on the problem, eBay assured us that it had plugged the hole. Despite this the site remains open to abuse through the same back door, as an email from Reg reader Adrien this week reminds us. eBay redirection ruse reloaded | The Register

Linked by shanmuga Monday, 13th November 2006 10:25PM