X.commerce is the new brand for the developer commerce tools that include the eBay API and PayPal API. The first conference under this new brand is coming in October to San Francisco. As a media partner, we have a promo code, as well as a little more information about how the company is looking to create a sum greater than its parts with the X.commerce platform.
The way the Square API delivers JSON output makes it possible for an attacker to engage in a cross-site scripting (XSS) under certain circumstances. The vulnerability was discovered by security researcher Ajay Chavda and reported to Square on August 7, 2015 through its bounty program on hackerone.