Monthly Archive
for: ‘December, 2012’

PayPal Stored XSS via Request Payment feature or “How to inject a malicious payload remotely into users accounts”

This is the first vulnerability i discovered during the PayPal bug bounty program on the first day of the program, i thought its about time i’d share it with ya all. Vulnerability Details: An attacker is able to inject and execute a malicious payload on a remote user account without the need to convince the […]

Read More

Recent Posts