Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Paypal Subscribe
Filtered by product Merchant-sdk-php
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-6099 1 Paypal 1 Merchant-sdk-php 2019-03-13 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in GetAuthDetails.html.php in PayPal PHP Merchant SDK (aka merchant-sdk-php) 3.9.1 allows remote attackers to inject arbitrary web script or HTML via the token parameter.