CVE-2017-6213
paypal/invoice-sdk-php is affected by a reflected XSS vulnerability in samples/permissions.php through the permToken parameter, which can lead to code execution. The affected component is the PHP-based PayPal invoice SDK; the underlying issue is lack of input sanitization on permToken. Public det...