Indian security researcher Shubham Upadhyay aka Cyb3R_Shubh4M sent us a new permanent XSS affecting the products listings on Ebay.com. He explained to us how to reproduce it: “I’ve found a critical persistent xss bug on ebay.com. for that you need a seller account “Once you login to your seller account on eBay, create a listing for sale”. Now in edit HTML put the xss code: ‘”–>
and then preview your listing and b00m!”]
Source: http://www.xssed.com/news/131/Another_Ebay_permanent_XSS