PayPal permissions-sdk-php verification_code Reflected cross site scripting

EntryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, was found in PayPal permissions-sdk-php (Programming Language Software) (the affected version unknown). This affects an unknown code block of the file paypal/permissions-sdk-php. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
819791603/12/2020VulD...confirm_urlhttps://github.com/paypal/permissions-sdk-php/issues/19github.com03/12/2020accepted100
819787503/12/2020VulD...discoverydate148763520003/12/2020accepted100
819792908/03/2018VulD...cvss3_nvd_basescore5.4nist.gov08/03/2018accepted90
819792808/03/2018VulD...0day_days52708/03/2018accepted90
819792708/03/2018VulD...cvss3_vuldb_rcU08/03/2018accepted90
819792608/03/2018VulD...cvss3_vuldb_rlX08/03/2018accepted90
819792508/03/2018VulD...cvss3_vuldb_eX08/03/2018accepted90
819792408/03/2018VulD...cvss2_vuldb_rcUC08/03/2018accepted90
819792308/03/2018VulD...cvss2_vuldb_rlND08/03/2018accepted90
819792208/03/2018VulD...cvss2_vuldb_eND08/03/2018accepted90
819792108/03/2018VulD...cve_nvd_summarypaypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verification_code parameter, resulting in code execution.mitre.org08/03/2018accepted100
819792008/03/2018VulD...cve_nvd_published1533160800mitre.org08/03/2018accepted100
819791908/03/2018VulD...cve_assigned1487800800mitre.org08/03/2018accepted100
819791808/03/2018VulD...cveCVE-2017-6215mitre.org08/03/2018accepted100
819791708/03/2018VulD...price_0day$0-$5ksee documentation08/03/2018accepted100
819791508/03/2018VulD...urlhttps://github.com/paypal/permissions-sdk-php/issues/19github.com08/03/2018accepted100
819791408/03/2018VulD...locationGitHub Repository08/03/2018accepted100
819791308/03/2018VulD...date1533160800 (08/02/2018)08/03/2018accepted100
819791208/03/2018VulD...titlewordReflected08/03/2018accepted100
819791108/03/2018VulD...cvss3_nvd_aNnist.gov08/03/2018accepted100

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!