paypal/invoice-sdk-php cross-site scripting vulnerability
paypal/invoice-sdk-php is a PHP-based Paypal payment software development kit . A cross-site scripting vulnerability exists in the samples/permissions.php file in paypal/invoice-sdk-php. A remote attacker can exploit this vulnerability to execute code with the help of the 'permToken' parameter...