Researchers disclosed critical flaws in the popular Meetup service at Black Hat USA 2020 this week. If exploited, the flaws could have enabled attackers to hijack any Meetup group, access the group s member details and even redirect Meetup payments to an attacker-owned PayPal account. Researchers disclosed the issues to Meetup, which has since fixed all the vulnerabilities as of July 15. Meetup is a service with a user base of over 35 million users, used to organize online groups with events for people with similar interests.
Source: https://threatpost.com/critical-meetup-website-flaws-takeover-payment-theft/157934/