Cross-site Scripting (XSS)

paypal/invoice-sdk-php is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization of permToken and allows arbitrary scripts to be rendered in samples/permissions.php...

CVE-2017-6213

paypal/invoice-sdk-php is vulnerable to reflected XSS in samples/permissions.php via the permToken parameter, resulting in code execution...

CVE-2017-6213

paypal/invoice-sdk-php is vulnerable to reflected XSS in samples/permissions.php via the permToken parameter, resulting in code execution...