4 matches found
PayPal Phishing Scam Uses Invoices Sent Via PayPal
Scammers are using invoices sent through PayPal.com to trick recipients into calling a number to dispute a pending charge. The missives -- which come from Paypal.com and include a link at Paypal.com that displays an invoice for the supposed transaction -- state that the users account is about to ...
paypal/invoice-sdk-php cross-site scripting vulnerability
paypal/invoice-sdk-php is a PHP-based Paypal payment software development kit . A cross-site scripting vulnerability exists in the samples/permissions.php file in paypal/invoice-sdk-php. A remote attacker can exploit this vulnerability to execute code with the help of the 'permToken' parameter...
Remote code execution
paypal/invoice-sdk-php is vulnerable to reflected XSS in samples/permissions.php via the permToken parameter, resulting in code execution...
Hancitor: fileless attack with a DLL copy trick
This article was authored by David Sánchez, Mickaël Roger, and Jérôme Segura During the past few years, malicious spam campaigns have proven to be one of the most efficient infection vectors, in part due to a combination of social engineering and a regular number of Office vulnerabilities. The...