The following issue is extremely severe, PayPal is allowing data from my customers to leak between themselves. The subscription filter at the following endpoint has stopped working: https://api.paypal.com/v1/billing/subscriptions/:subscriptionId/transactions Which means that the transaction list returned is always the same regardless of the subscription I send. For example, the following requests returns the same payload: 1. https://api.paypal.com/v1/billing/subscriptions/I-1RM0VC18F0XX/transactions?start_time=2023-01-01T00:00:00.000Z&end_time=2023-12-31T00:00:00.000Z 2. https://api.paypal.com/v1/billing/subscriptions/I-35XHEHHBJX8Y/transactions?start_time=2023-01-01T00:00:00.000Z&end_time=2023-12-31T00:00:00.000Z But the expectation was that each of the transaction lists corresponded only to the informed subscription ID. This issue has already happened before on July 2022. It is absurd on how PayPal allows their API to have such a critical bug in production.
... View more