I am implementing HostedPayment using an embedded frame. while
integrating I have noticed that the generated token is available on the
parent page which can be easily manipulated with a different token. As
the form and iframe are on the same page so ...