Validation Bypass

Module: paypal-ipn

Published: December 3rd, 2014

Reported by: Martin Angelov

CVE-NONE

CWE-

Vulnerable: <3.0.0
Patched: >=3.0.0

Overview

paypal-ipn uses the test_ipn parameter (which is set by the PayPal IPN simulator) to determine if it should use the production PayPal site or the sandbox.

"With a bit of time, an attacker could craft a request using the simulator that would fool any application which does not explicitly check for test_ipn in production." [1]

Remediation

  • Upgrade to version 3.0.0 or greater.

References

Sign up FREE for
nsp Continuous Security

Free for open source and the first private repo,
then just $1/mo per private repo