EPSS
Percentile
39.7%
paypal/adaptivepayments-sdk-php is vulnerable to cross-site scripting (XSS). The vulnerability exists in the sample application where the value of $_REQUEST['payKey'] was not sanitized.
$_REQUEST['payKey']
github.com/paypal/adaptivepayments-sdk-php/issues/87