VYPR

IPN utility

by Paypal

CVEs (2)

  • CVE-2022-23410Feb 14, 2022
    risk 0.00cvss epss 0.00

    AXIS IP Utility before 4.18.0 allows for remote code execution and local privilege escalation by the means of DLL hijacking. IPUtility.exe would attempt to load DLLs from its current working directory which could allow for remote code execution if a compromised DLL would be…

  • CVE-2012-5788Nov 4, 2012
    risk 0.00cvss epss 0.01

    The PayPal IPN utility does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate, related to…