GHSA-2QFV-WWFX-FH34 paypal/permissions-sdk-php reflected Cross-site Scripting (XSS)

paypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verificationcode parameter, resulting in code execution...

Cross-site Scripting (XSS)

paypal/permissions-sdk-php is vulnerable to cross-site scripting XSS attacks. The library does not properly filter user input in the HTTPREQUEST parameter in the GetAccessToken.php sample, allowing a malicious user to inject and execute arbitrary Javascript...

CVE-2017-6215

paypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verificationcode parameter, resulting in code execution...

CVE-2017-6215

CVE-2017-6215 affects paypal/permissions-sdk-php; a reflected XSS in the samples/GetAccessToken.php verification_code parameter can lead to code execution. This is documented across multiple feeds (NVD entry and related advisories). No patch/version details are provided here; remediation status i...

CVE-2017-6215

paypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verificationcode parameter, resulting in code execution...