{"id":721,"date":"2019-04-19T21:23:32","date_gmt":"2019-04-19T19:23:32","guid":{"rendered":"https:\/\/fr.koddos.net\/blog\/?p=721"},"modified":"2019-04-20T21:30:52","modified_gmt":"2019-04-20T19:30:52","slug":"une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante","status":"publish","type":"post","link":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/","title":{"rendered":"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE."},"content":{"rendered":"

L’une des plus grandes plateformes de vente en ligne pr\u00e9sente une faille de s\u00e9curit\u00e9 importante dans son API. La plateforme en question s’appelle Shopify et h\u00e9berge plus de 800 000 marchands diff\u00e9rents via son logiciel d’achat en ligne, qui auraient tous \u00e9t\u00e9 expos\u00e9s \u00e0 une faille critique dans sa s\u00e9curit\u00e9.<\/p>\n

Un chasseur de bug de Bug Bounty a trouv\u00e9 une faille critique<\/strong><\/p>\n

Ayoub Fathi \u00e9tait le chercheur en s\u00e9curit\u00e9 qui a expos\u00e9 la faille<\/a><\/strong> qui \u00e9tait accessible via un point d’extremit\u00e9 API vuln\u00e9rable. La faille aurait permis aux hackers malveillants de visualiser et d’exposer les donn\u00e9es relatives au trafic et aux revenus des plus de 800 000 commer\u00e7ants sur la plateforme Shopify.<\/p>\n

Le chercheur en s\u00e9curit\u00e9 et chasseur de bug ind\u00e9pendant de Bug Bounty a trouv\u00e9 le d\u00e9faut au cours d’une routine apr\u00e8s avoir remarqu\u00e9 que deux commer\u00e7ants de Shopify qui exposaient les donn\u00e9es. Il a refus\u00e9 de donner les noms des commer\u00e7ants qui l’ont aid\u00e9 \u00e0 identifier la faille. Ayoud a mis en place certaines alertes de domaine et d’URL pour lui indiquer chaque fois qu’un nouveau point d’extr\u00e9mit\u00e9 de l’API appara\u00eet sur ces domaines et URLs. Une fois qu’il a \u00e9t\u00e9 avis\u00e9 d’un point d’extr\u00e9mit\u00e9 qu’il n’avait jamais vu provenant d’un commer\u00e7ant anonyme, il a constat\u00e9 que les donn\u00e9es s’\u00e9chappaient de ce point d’extr\u00e9mit\u00e9.<\/p>\n

Une fois qu’il s’est mis \u00e0 reproduire cette faille, il a \u00e9t\u00e9 en mesure de trouver des donn\u00e9es<\/a><\/strong> sur les revenus qui fuyaient d’un autre point d’extremit\u00e9 provenant d’un autre commer\u00e7ant. Ce qui est int\u00e9ressant \u00e0 propos de ce magasin en ligne, c’est qu’il avait d\u00e9j\u00e0 \u00e9t\u00e9 vendu et retir\u00e9 du march\u00e9, mais qu’il y avait encore des fuites de donn\u00e9es. Fathi affirme que le point d\u2019extr\u00e9mit\u00e9 de l’API responsable des fuites \u00e9tait le Shopify Exchange App. Le but du point d’extr\u00e9mit\u00e9 de l’API \u00e9tait de prendre les donn\u00e9es en interne et de les afficher dans un graphique au propri\u00e9taire du magasin.<\/p>\n

Le d\u00e9faut a \u00e9t\u00e9 class\u00e9 7,5 sur l’\u00e9chelle CVSS 3.0. Le Common Vulnerability Scoring System est utilis\u00e9 pour classer tous les bugs et failles de s\u00e9curit\u00e9 trouv\u00e9s via les programmes Bug Bounty. Il s’agit d’un score \u00e9lev\u00e9 qui r\u00e9sulte du fait que les donn\u00e9es sur le trafic et les revenus des clients ont \u00e9t\u00e9 expos\u00e9s malgr\u00e9 l’absence de privil\u00e8ges ou d’interaction avec l’utilisateur pour avoir acc\u00e8s \u00e0 ces donn\u00e9es.<\/p>\n

Une fois que Fathi a identifi\u00e9 la faille, il l’a test\u00e9e avec les magasins de la plate-forme. Il l’a fait en cr\u00e9ant un script qui utilisait un fichier texte avec les noms de tous les magasins sur Shopify (assez facile \u00e0 trouver) qui \u00e9tait utilis\u00e9 par une requ\u00eate curl pour recevoir toutes les donn\u00e9es sur les revenus. Il a constat\u00e9 que 12 100 magasins \u00e9taient vuln\u00e9rables \u00e0 cette faille de s\u00e9curit\u00e9 et il a \u00e9t\u00e9 en mesure d’obtenir de plus de 8 000 d’entre eux des donn\u00e9es sur les revenus et le trafic. Il a dit que tout commer\u00e7ant qui avait install\u00e9 l’application Exchange \u00e9tait vuln\u00e9rable<\/a><\/strong>.<\/p>\n

Shopify a corrig\u00e9 l’erreur en trois jours suivant sa notification. La soci\u00e9t\u00e9 a d\u00e9clar\u00e9 qu’elle croyait qu’une \u00abexp\u00e9rience de confiance est cruciale pour chaque commer\u00e7ant de notre plateforme\u00bb et a r\u00e9it\u00e9r\u00e9 que ses strat\u00e9gies de s\u00e9curit\u00e9 \u00e9taient en place pour soutenir cette confiance. Ils ont poursuivi en disant que le \u00abprogramme Bug Bounty renforce ces efforts\u00a0\u00bb en les aidant \u00e0 maintenir leur plateforme aussi s\u00e9curis\u00e9e que possible. Ils mentionnent que l’\u00e9quipe de validation et d’ing\u00e9nierie a r\u00e9solu le probl\u00e8me en une heure.<\/p>\n

La r\u00e9v\u00e9lation a \u00e9t\u00e9 b\u00e2cl\u00e9e par Fathi<\/strong><\/p>\n

La faille a \u00e9t\u00e9 port\u00e9e \u00e0 la connaissance du public la premi\u00e8re fois cette semaine. Cependant, elle a \u00e9t\u00e9 communiqu\u00e9e en priv\u00e9 \u00e0 Shopify le 13 octobre de l’ann\u00e9e derni\u00e8re. Cependant, l’\u00e9quipe de Shopify n’a pas r\u00e9alis\u00e9 que le bug \u00e9tait admissible au programme Bug Bounty, car il avait \u00e9t\u00e9 test\u00e9 par rapport \u00e0 des magasins op\u00e9rationnels et non \u00e0 des magasins qui avaient \u00e9t\u00e9 cr\u00e9\u00e9s juste dans le but de tester la s\u00e9curit\u00e9.<\/p>\n

Pour sa part, Fathi a dit qu’il avait tort et qu’il ne referait pas la m\u00eame erreur. Il a assum\u00e9 l’enti\u00e8re responsabilit\u00e9 de ses actes et de son manque de connaissance des proc\u00e9dures concernant le programme Bug Bounty de Shopify. Il a \u00e9galement pr\u00e9sent\u00e9 ses excuses \u00e0 l’\u00e9quipe de Shopify pour son erreur.<\/p>\n","protected":false},"excerpt":{"rendered":"

L’une des plus grandes plateformes de vente en ligne pr\u00e9sente une faille de s\u00e9curit\u00e9 importante dans son API. La plateforme en question s’appelle Shopify et h\u00e9berge plus de 800 000 marchands diff\u00e9rents via son logiciel d’achat en ligne, qui auraient tous \u00e9t\u00e9 expos\u00e9s \u00e0 une faille critique dans sa s\u00e9curit\u00e9. Un chasseur de bug de … Continue reading UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE.<\/span><\/a><\/p>\n","protected":false},"author":5,"featured_media":722,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[6],"tags":[],"class_list":["post-721","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-actualite"],"yoast_head":"\nUNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE. - Blog KoDDoS<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/\" \/>\n<meta property=\"og:locale\" content=\"fr_FR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE. - Blog KoDDoS\" \/>\n<meta property=\"og:description\" content=\"L’une des plus grandes plateformes de vente en ligne pr\u00e9sente une faille de s\u00e9curit\u00e9 importante dans son API. La plateforme en question s’appelle Shopify et h\u00e9berge plus de 800 000 marchands diff\u00e9rents via son logiciel d’achat en ligne, qui auraient tous \u00e9t\u00e9 expos\u00e9s \u00e0 une faille critique dans sa s\u00e9curit\u00e9. Un chasseur de bug de … Continue reading UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog KoDDoS\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/koddosCom\" \/>\n<meta property=\"article:published_time\" content=\"2019-04-19T19:23:32+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-04-20T19:30:52+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i2.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"739\" \/>\n\t<meta property=\"og:image:height\" content=\"471\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"KoDDoS\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@koddoscom\" \/>\n<meta name=\"twitter:site\" content=\"@koddoscom\" \/>\n<meta name=\"twitter:label1\" content=\"\u00c9crit par\" \/>\n\t<meta name=\"twitter:data1\" content=\"KoDDoS\" \/>\n\t<meta name=\"twitter:label2\" content=\"Dur\u00e9e de lecture estim\u00e9e\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/\"},\"author\":{\"name\":\"KoDDoS\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#\\\/schema\\\/person\\\/d22f7fb31dc4d117c9eb5c9cfe533f85\"},\"headline\":\"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE.\",\"datePublished\":\"2019-04-19T19:23:32+00:00\",\"dateModified\":\"2019-04-20T19:30:52+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/\"},\"wordCount\":834,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/i0.wp.com\\\/fr.koddos.net\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/04\\\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1\",\"articleSection\":[\"Actualit\u00e9s\"],\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/\",\"url\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/\",\"name\":\"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE. - Blog KoDDoS\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/i0.wp.com\\\/fr.koddos.net\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/04\\\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1\",\"datePublished\":\"2019-04-19T19:23:32+00:00\",\"dateModified\":\"2019-04-20T19:30:52+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#breadcrumb\"},\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#primaryimage\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/fr.koddos.net\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/04\\\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/fr.koddos.net\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/04\\\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1\",\"width\":739,\"height\":471},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE.\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/\",\"name\":\"Blog KoDDoS\",\"description\":\"Blog KoDDoS est un blog d\u2019information et d\u2019actualit\u00e9 focalis\u00e9 sur le hacking, la cyber criminalit\u00e9, la vie priv\u00e9e et la surveillance.\",\"publisher\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"fr-FR\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#organization\",\"name\":\"KoDDoS\",\"url\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/i1.wp.com\\\/fr.koddos.net\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/02\\\/logo.png?fit=258%2C55&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i1.wp.com\\\/fr.koddos.net\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/02\\\/logo.png?fit=258%2C55&ssl=1\",\"width\":258,\"height\":55,\"caption\":\"KoDDoS\"},\"image\":{\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/koddosCom\",\"https:\\\/\\\/x.com\\\/koddoscom\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/#\\\/schema\\\/person\\\/d22f7fb31dc4d117c9eb5c9cfe533f85\",\"name\":\"KoDDoS\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/239872ddb935e40a5bf46e7421e0fdd8419ae8e91164a61d84219911f7648c73?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/239872ddb935e40a5bf46e7421e0fdd8419ae8e91164a61d84219911f7648c73?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/239872ddb935e40a5bf46e7421e0fdd8419ae8e91164a61d84219911f7648c73?s=96&d=mm&r=g\",\"caption\":\"KoDDoS\"},\"url\":\"https:\\\/\\\/fr.koddos.net\\\/blog\\\/author\\\/oiyndjepop\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE. - Blog KoDDoS","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/","og_locale":"fr_FR","og_type":"article","og_title":"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE. - Blog KoDDoS","og_description":"L’une des plus grandes plateformes de vente en ligne pr\u00e9sente une faille de s\u00e9curit\u00e9 importante dans son API. La plateforme en question s’appelle Shopify et h\u00e9berge plus de 800 000 marchands diff\u00e9rents via son logiciel d’achat en ligne, qui auraient tous \u00e9t\u00e9 expos\u00e9s \u00e0 une faille critique dans sa s\u00e9curit\u00e9. Un chasseur de bug de … Continue reading UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE.","og_url":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/","og_site_name":"Blog KoDDoS","article_publisher":"https:\/\/www.facebook.com\/koddosCom","article_published_time":"2019-04-19T19:23:32+00:00","article_modified_time":"2019-04-20T19:30:52+00:00","og_image":[{"width":739,"height":471,"url":"https:\/\/i2.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1","type":"image\/jpeg"}],"author":"KoDDoS","twitter_card":"summary_large_image","twitter_creator":"@koddoscom","twitter_site":"@koddoscom","twitter_misc":{"\u00c9crit par":"KoDDoS","Dur\u00e9e de lecture estim\u00e9e":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#article","isPartOf":{"@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/"},"author":{"name":"KoDDoS","@id":"https:\/\/fr.koddos.net\/blog\/#\/schema\/person\/d22f7fb31dc4d117c9eb5c9cfe533f85"},"headline":"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE.","datePublished":"2019-04-19T19:23:32+00:00","dateModified":"2019-04-20T19:30:52+00:00","mainEntityOfPage":{"@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/"},"wordCount":834,"commentCount":0,"publisher":{"@id":"https:\/\/fr.koddos.net\/blog\/#organization"},"image":{"@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1","articleSection":["Actualit\u00e9s"],"inLanguage":"fr-FR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/","url":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/","name":"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE. - Blog KoDDoS","isPartOf":{"@id":"https:\/\/fr.koddos.net\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#primaryimage"},"image":{"@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1","datePublished":"2019-04-19T19:23:32+00:00","dateModified":"2019-04-20T19:30:52+00:00","breadcrumb":{"@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#breadcrumb"},"inLanguage":"fr-FR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/"]}]},{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#primaryimage","url":"https:\/\/i0.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1","contentUrl":"https:\/\/i0.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1","width":739,"height":471},{"@type":"BreadcrumbList","@id":"https:\/\/fr.koddos.net\/blog\/une-grande-plateforme-de-vente-en-ligne-presentant-une-faille-de-securite-importante\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/fr.koddos.net\/blog\/"},{"@type":"ListItem","position":2,"name":"UNE GRANDE PLATEFORME DE VENTE EN LIGNE PR\u00c9SENTANT UNE FAILLE DE S\u00c9CURIT\u00c9 IMPORTANTE."}]},{"@type":"WebSite","@id":"https:\/\/fr.koddos.net\/blog\/#website","url":"https:\/\/fr.koddos.net\/blog\/","name":"Blog KoDDoS","description":"Blog KoDDoS est un blog d\u2019information et d\u2019actualit\u00e9 focalis\u00e9 sur le hacking, la cyber criminalit\u00e9, la vie priv\u00e9e et la surveillance.","publisher":{"@id":"https:\/\/fr.koddos.net\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/fr.koddos.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"fr-FR"},{"@type":"Organization","@id":"https:\/\/fr.koddos.net\/blog\/#organization","name":"KoDDoS","url":"https:\/\/fr.koddos.net\/blog\/","logo":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/fr.koddos.net\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/i1.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2018\/02\/logo.png?fit=258%2C55&ssl=1","contentUrl":"https:\/\/i1.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2018\/02\/logo.png?fit=258%2C55&ssl=1","width":258,"height":55,"caption":"KoDDoS"},"image":{"@id":"https:\/\/fr.koddos.net\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/koddosCom","https:\/\/x.com\/koddoscom"]},{"@type":"Person","@id":"https:\/\/fr.koddos.net\/blog\/#\/schema\/person\/d22f7fb31dc4d117c9eb5c9cfe533f85","name":"KoDDoS","image":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/secure.gravatar.com\/avatar\/239872ddb935e40a5bf46e7421e0fdd8419ae8e91164a61d84219911f7648c73?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/239872ddb935e40a5bf46e7421e0fdd8419ae8e91164a61d84219911f7648c73?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/239872ddb935e40a5bf46e7421e0fdd8419ae8e91164a61d84219911f7648c73?s=96&d=mm&r=g","caption":"KoDDoS"},"url":"https:\/\/fr.koddos.net\/blog\/author\/oiyndjepop\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/fr.koddos.net\/blog\/wp-content\/uploads\/2019\/04\/Major-Shopping-Platform-with-Severe-Security-Flaw-Exposed.jpg?fit=739%2C471&ssl=1","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9DjzA-bD","jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/posts\/721","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/comments?post=721"}],"version-history":[{"count":1,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/posts\/721\/revisions"}],"predecessor-version":[{"id":723,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/posts\/721\/revisions\/723"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/media\/722"}],"wp:attachment":[{"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/media?parent=721"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/categories?post=721"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fr.koddos.net\/blog\/wp-json\/wp\/v2\/tags?post=721"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}