CVE-2012-5788
The PayPal IPN utility is vulnerable because it does not verify that the server hostname matches the CN/subjectAltName in the X.509 certificate, enabling MITM spoofing with any valid certificate via the PHP fsockopen-based connection. Affected component: PayPal IPN utility; underlying issue: miss...