PayPal Inc MOS API Security Video Demonstration discovered - Filter Bypass & Multiple IVE Vulnerabilities

PayPal Inc MOS API Security Video Demonstration discovered!
The following video shows a live hacking session in the multiorder-shipping application of paypal inc by ateeq ur rehman khan, ibrahim mossad and benjamin kunz mejri. The different application-side vulnerabilities has been reported by the vulnerability laboratory in 2014 Q1-2.
All the visible security vulnerabilities are already reported and patched by the paypal dev team.
The advisories were accepted as part of the official ebay inc magento > paypal inc bug bounty program (2014). Feel free to watch the video and resources to understand the impact behind the issues in the mos api.
Video Article: https://www.vulnerability-lab.com/get_content.php?id=1273
Video: https://www.youtube.com/watch?v=GRvU_sKWkIs
Advisory #1: https://www.vulnerability-lab.com/get_content.php?id=1049
Advisory #2: https://www.vulnerability-lab.com/get_content.php?id=1050
Add new comment