A persistent mail encoding web vulnerability is detected in the official PayPal Finance Service Web Application. The vulnerability allows sending via POST method malicious mails to customers with own injected persistent script code.
Read more here – http://www.vulnerability-lab.com/get_content.php?id=846