Unrated severityNVD Advisory· Published Jan 13, 2006· Updated Apr 16, 2026

CVE-2006-0201

Description

Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50, and possibly earlier versions, allows remote attackers to enter false payment entries into the log file via HTTP POST requests to ipn_success.php.

Affected products

Paypal/Php Toolkit
cpe:2.3:a:paypal:php_toolkit:*:*:*:*:*:*:*:*
Range: <=0.50

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/18444nvdVendor Advisory
www.securityfocus.com/archive/1/421739nvdVendor Advisory
www.uinc.ru/articles/vuln/ptpaypal050.shtmlnvdVendor Advisory
www.osvdb.org/22378nvd
www.securityfocus.com/bid/16218nvd
www.vupen.com/english/advisories/2006/0183nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000