mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
741 B
741 B
CVE-2013-7201
Description
WebHybridClient.java in PayPal 5.3 and earlier for Android ignores SSL errors, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information.
POC
Reference
- https://labs.mwrinfosecurity.com/advisories/paypal-remote-code-execution/
- https://labs.mwrinfosecurity.com/advisories/paypal-remote-code-execution/
Github
No PoCs found on GitHub currently.