Please see the Paddle Vulnerability Disclosure Policy and report any vulnerabilities using https://vdp.paddle.com/p/Report-a-Vulnerability.
Warning
Do not create issues for potential security vulnerabilities. Issues are public and can be seen by potentially malicious actors.
Thanks for helping to make the Paddle platform safe for everyone.