Cross-site Scripting (XSS)

paypal/merchant-sdk-php is vulnerable to cross-site scriptingXSS attacks. The vulnerability exists due to insufficient filtration of user-supplied data in token HTTP GET parameter in samples/AccountAuthentication/GetAuthDetails.html.php, allowing a malicious user to inject and execute arbitrary w...

PayPal PHP Merchant SDK Cross-Site Scripting Vulnerability

The PayPal PHP Merchant SDK is a development toolkit for integration with PayPal's Express Checkout and Web Payments Pro APIs. A cross-site scripting vulnerability in the GetAuthDetails.html.php file in the PayPal PHP Merchant SDK allows remote attackers to exploit the vulnerability to inject...