Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50, and possibly earlier versions, allows remote attackers to enter false payment entries into the log file via HTTP POST requests to ipn_success.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-01-13T23:00:00

Updated: 2024-08-07T16:25:33.971Z

Reserved: 2006-01-13T00:00:00

Link: CVE-2006-0201

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-01-13T23:03:00.000

Modified: 2011-03-08T02:29:34.347

Link: CVE-2006-0201

cve-icon Redhat

No data.