Join the Community

21,626
Expert opinions
43,819
Total members
402
New members (last 30 days)
155
New opinions (last 30 days)
28,576
Total comments

RBS fix vulnerability in WorldPay site

Interesting read on The Register about a cross site scripting bug on Worldpay. Then a lot of comment about whether it was fixed quickly enough!

Amateur security sleuth Adam Grit spotted the loophole last month and found it allowed him to inject custom javascript code. He could then intercept all the sensitive information that users had typed onto a Worldpay payment page.

He tested it on their live site and confirmed it worked - and then emailed them the details of the problem. He apparently got no response.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

21,626
Expert opinions
43,819
Total members
402
New members (last 30 days)
155
New opinions (last 30 days)
28,576
Total comments

Now Hiring