Janobe Paypal
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Janobe Paypal.
By the Year
In 2026 there have been 0 vulnerabilities in Janobe Paypal. Paypal did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 18 | 7.39 |
It may take a day or so for new Paypal vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Janobe Paypal Security Vulnerabilities
SQL Injection in PayPal/Credit Card Payment v1.0 via event_print.php
CVE-2024-33972
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'events' in '/report/event_print.php' parameter.
SQL Injection
SQLi in PayPal Payment Plugin 1.0 via /admin/mod_reports/printreport.php
CVE-2024-33960
9.8 - Critical
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'end' in '/admin/mod_reports/printreport.php' parameter.
SQL Injection
SQLi in PayPal Payment Module v1.0 /admin/mod_reservation/controller.php
CVE-2024-33961
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'code' in '/admin/mod_reservation/controller.php' parameter.
SQL Injection
SQL Injection in PayPal Payment Module 1.0 via /admin/mod_reservation/index.php
CVE-2024-33962
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'code' in '/admin/mod_reservation/index.php' parameter.
SQL Injection
SQL injection in PayPal CC Pay Plugin 1.0 via /admin/mod_room/index.php
CVE-2024-33963
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'id' in '/admin/mod_room/index.php' parameter.
SQL Injection
SQLi in PayPal Payment Module v1.0 via /admin/mod_users/index.php
CVE-2024-33964
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'id' in '/admin/mod_users/index.php' parameter.
SQL Injection
SQLi in tubigangarden 1.0 mod_accomodation Admin
CVE-2024-33965
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'view' in '/tubigangarden/admin/mod_accomodation/index.php' parameter.
SQL Injection
SQLi in PayPal Payment Module v1.0 via xtsearch (/admin/mod_reports/index.php)
CVE-2024-33966
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'xtsearch' in '/admin/mod_reports/index.php' parameter.
SQL Injection
SQLi in PayPal Payment v1.0 via Attendance Report
CVE-2024-33967
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'view' in 'Attendance' and 'YearLevel' in '/AttendanceMonitoring/report/attendance_print.php' parameter.
SQL Injection
SQL Injection in PayPal Payment Module v1.0 (AttendanceMonitoring/index.php)
CVE-2024-33968
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'Attendance' and 'YearLevel' in '/AttendanceMonitoring/report/index.php' parameter.
SQL Injection
SQLi in AttendanceMonitoring 1.0 (PayPal/CC/DC payment /id param)
CVE-2024-33969
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'id' in '/AttendanceMonitoring/department/index.php' parameter.
SQL Injection
SQLi in PayPal CC/DD Payment v1.0 via /candidate/controller.php 'studid'
CVE-2024-33970
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'studid' in '/candidate/controller.php' parameter.
SQL Injection
SQLi in PayPal Payment Gateway 1.0 via /login.php before 1.0
CVE-2024-33971
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'username' in '/login.php' parameter.
SQL Injection
SQLi in PayPal Payment Module v1.0 via attendance_print.php
CVE-2024-33973
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'Attendance' and 'YearLevel' in '/report/attendance_print.php' parameter.
SQL Injection
CVE-2024-33959: SQLi in PayPal Payment v1.0 via printreport.php
CVE-2024-33959
7.5 - High
- August 06, 2024
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'categ' in '/admin/mod_reports/printreport.php' parameter.
SQL Injection
XSS in PayPal Credit Card Payment v1.0: 'start' param in /admin/mod_reports/index.php
CVE-2024-33981
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'start' parameter in '/admin/mod_reports/index.php'.
XSS
XSS in PayPal Payment Module v1.0 via 'start' param
CVE-2024-33980
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'start' parameter in '/admin/mod_reports/printreport.php'.
XSS
XSS in PayPal CC/DEBIT Payment v1.0 via /index.php params
CVE-2024-33979
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'q', 'arrival', 'departure' and 'accomodation' parameters in '/index.php'.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Janobe Paypal or by Janobe? Click the Watch button to subscribe.
