arstechnica.com eBay has no plans to fix “severe” bug that allows malware distribution [Updated]
Clever "JSF**K" technique allows hackers to bypass eBay block of JavaScript.
![eBay has no plans to fix “severe” bug that allows malware distribution [Updated]](https://lemmy.world/pictrs/image/50e9fe86-ee08-4467-9f96-8e178376f491.png?format=webp)
Search
Last Week in Fediverse – ep 69\70 | fediversereport.com
https://fediversereport.com/last-week-in-fediverse-ep-69/
- Celebrating the 16th birthday of the fediverse
- The European Commission sets up a new fediverse instance
- bridge between the fediverse and Bluesky has been used to spam Bluesky with pro-Trump messaging
- Three new products for the ATmosphere by Japanese developers: Video platform Bluemotion, Blogging with WhiteWind, and audio spaces with Bluecast.
- Fediverse share button - https://stefanbohacek.com/project/fediverse-sharing-button/
UPDATE:
EPISODE 70 - https://fediversereport.com/last-week-in-fediverse-ep-70/
TIL JSFuck, an esoteric subset of JS that only uses operators, could be used to hack eBay customers by injecting it into item listings. As JSFuck obfuscated the actual code, attackers were able to get
This news is from almost exactly 8 years ago. Softpedia reported 13 days later that eBay partially patched it, but the patch was insufficient. I could not find further updates, but I do know that eBay has since removed more advanced JavaScript (incl. JSFuck) from all listings in 2017.
"An attacker could target eBay users by sending them a legitimate page that contains malicious code," Check Point researcher Oded Vanunu wrote in a blog post published Tuesday. "Customers can be tricked into opening the page, and the code will then be executed by the user's browser or mobile app, leading to multiple ominous scenarios that range from phishing to binary download."
To exploit this vulnerability, all an attacker needs to do is create an online eBay store. In his store details, he posts a malicio
Creating a Custom Skin
www.pragmaticcoding.ca JavaFX: Reskinning ToggleButton
An introduction to JavaFX Skins and Skinnable and how to create your own skin.
I have a blog where I talk about programming stuff - mostly JavaFX and Kotlin. I've been trying to keep up a steady stream of new content, and I have lots of ideas for topics, but sometimes life gets in the way. This is the first article I've posted in a couple of months.
This latest article is the last in a set of three about creating custom controls in JavaFX. The first two were:
They're not actually required reading for this last article, but they do cover, between them, the most common use cases and approaches for creating custom controls.
But if you've ever wondered what Skin was, and how you might alter the look and feel of one of the standar