Remote code execution flaws made possible by Cross Site Request Forgery (CSRF). Phil Muncaster Security experts have gone public with two Remote Code Execution vulnerabilities branded high-risk, after the e-commerce…
Tag: CSRF
Asda bug exposed online shopping payment details
A flaw on supermarket Asda’s website gave hackers the chance to collect customers’ personal information and payment details, the BBC has learned. The US-owned retail firm, which processes upwards of…
Popular 3G/4G data dongles are desperately vulnerable, say hackers
Vulnerable to remote code execution. Richard Chirgwin Cellular modems from four vendors have been popped by security researchers, who have documented cross-site scripting (XSS), cross-site request forgery (CSRF), remote code…