Security News

PayPal Fixes OAuth Token Leaking Vulnerability (Threatpost)
2016-11-28 20:52

PayPal fixed an issue that could have allowed an attacker to hijack OAuth tokens associated with any PayPal OAuth application. The vulnerability was publicly disclosed on Monday by Antonio Sanso,...

PayPal Fixes CSRF Vulnerability in PayPal.me (Threatpost)
2016-07-22 17:33

PayPal recently fixed a vulnerability on its PayPal.me site that could've let an attacker change a user's profile without their permission.