Two Indian hackers recently discovered a significant security flaw in PayPal.

"Paypal is affected by an XSS vulnerability where it fails to validate input," The Hacker News reports. "One can add arbitrary javascript with no need for any filter evasion."

"This is a serious security issue, with potential implications that are only starting to be understood," the article states.

Go to "XSS Vulnerability discovered on Paypal" to read the details.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.