Today, so many websites are vulnerable to this vector. By using this vulnerability many attacks can be carried on like cookie stealing, session hijacking and so many other attacks also. This attack can be upgraded to gain some higher level of disclosure or attack if combined with other attack vectors.
Today just surfing PayPal i came to know about that even PayPal be a target for this attack. So i'm sharing this vulnerability here at Infi-Zeal Technologies Blog, with you.
And this is the very basic test for XSS discovery at PayPal.