U.S. Bank and Bank of America Websites Vulnerable

Cross-site scripting weaknesses have been discovered in two websites belonging to the Bank of America and U.S. Bank. The flaws facilitate potential phishing attacks, because they allow attackers to inject IFrames, hijack sessions, or prompt arbitrary alerts. Cross-site scripting, more common... [ read more >> ]

Bank of America and U.S. Bank XSSed

Session cookie revealing on U.S. Bank website

IFrame injection in U.S. Bank website

Arbitrary JavaScript alert on U.S. Bank website

Session cookie revealing on Bank of America website

IFrame injection in Bank of America website

Arbitrary JavaScript alert on Bank of America website

Image comment: Arbitrary JavaScript alert on Bank of America website

<< Previous

Arbitrary JavaScript alert on Bank of America website
© 2001 - 2012 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Send us feedback