Posts

Showing posts from 2012

Pay anything Get anything ..A Payment Gateway Parameter Tampering Vulnerability

Be careful with the payment gateway implementations. Few months back I came across a issue in one of the web application where it was possible to buy any item and pay how much ever you want and get transaction receipt of any amount ;). Read it   here