"Samir says the three vulnerabilities ranked as medium flaws attracting a security score averaging three"
What is a "security score"? Is a score of three bad? Good? Middling? What is the range, and which direction does it run from good to bad?
Vulnerability Lab researcher Hadji Samir says eBay has squashed three vulnerabilities in its Magento shopping platform that could permit session hijacking and man-in-the-middle attacks. The penetration tester disclosed this month the vulnerabilities along with proof-of-concept videos showing how attackers could steal session …