← back
CVE-2006-0201

CVE-2006-0201

EPSS 1.5%
Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50, and possibly earlier versions, allows remote attackers to enter false payment entries into the log file via HTTP POST requests to ipn_success.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/18444http://www.osvdb.org/22378http://www.securityfocus.com/archive/1/421739http://www.securityfocus.com/bid/16218http://www.uinc.ru/articles/vuln/ptpaypal050.shtmlhttp://www.vupen.com/english/advisories/2006/0183