A German Security researcher has demonstrated a critical vulnerability on Ebay website, world's biggest eStore.
According to David Vieira-Kurz discovered Remote code execution flaw "due to a type-cast issue in combination with complex curly syntax", that allows an attacker to execute arbitrary code on the EBay's web server.<!-- adsense -->In a demo video, he exploited this RCE flaw on EBay