Token leak in security challenge flow allows retrieving victim's PayPal email and plain text password

Disclosed: 2020-01-08 16:31:37 By alexbirsan To paypal
High
Vulnerability Details
No vulnerability description provided or it is restricted.
Actions
View on HackerOne
Report Stats
  • Report ID: 739737
  • State: Closed
  • Substate: resolved
  • Upvotes: 1360
Share this report