Tag: xss

Apple's iTunes Affiliates site briefly subjected to image swaps

Our friends over at OS X Daily passed along their story noting that Apple's site for iTunes Affiliates was vulnerable to a cross-site URL trick, letting you substitute your own images for the ones normally displayed on the page. Since the site is intended to let websites display a custom top banner,...

Continue Reading

© 2015 AOL Inc. All Rights Reserved.