“This is not a new type of web application vulnerability on sites such as eBay. This is related to the fact that we allow sellers to use active content like Javascript and Flash on our site," the company said.