Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » RCE, information disclosure and XSS flaws found in PayPal Partner Program

RCE, information disclosure and XSS flaws found in PayPal Partner Program

2014/04/15

Softpedia - (International) A security researcher identified and reported a cross-site scripting (XSS) issue and an information disclosure issue that could be leveraged for remote code execution in the PayPal Partner Program's payment processor Web site. The issues were later closed by PayPal.

Source: http://news.softpedia.com/news/RCE-Information-Disclosure-and-XSS-Flaws-Found-in-PayPal-Partner-Program-Video-437634.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:19:55