An input filter bypass & persistent script code inject vulnerability is detected in the official PayPal Inc Core Application API. A filter bypass vulnerability allows to evade the basic filter validation of a vulnerable application api module. A persistent script code inject web vulnerability allows remote attackers to inject script code on the application-side of the affected module.
Read more here – http://www.vulnerability-lab.com/get_content.php?id=984