Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
BtcpayserverBtcpay Server

6 matches found

CVE
CVEadded 2021/05/05 1:15 p.m.32 views

CVE-2021-29245

BTCPay Server through 1.0.7.0 uses a weak method Next to produce pseudo-random values to generate a legacy API key.

5.3CVSS5.2AI score0.00363EPSS
CVE
CVEadded 2023/03/02 5:15 a.m.30 views

CVE-2023-1149

Improper Neutralization of Equivalent Special Elements in GitHub repository btcpayserver/btcpayserver prior to 1.8.0.

5.7CVSS5.5AI score0.00079EPSS
CVE
CVEadded 2021/05/05 1:15 p.m.28 views

CVE-2021-29248

BTCPay Server through 1.0.7.0 could allow a remote attacker to obtain sensitive information, caused by failure to set the Secure flag for a cookie.

5.3CVSS5.1AI score0.00127EPSS
CVE
CVEadded 2021/05/05 1:15 p.m.27 views

CVE-2021-29250

BTCPay Server through 1.0.7.0 suffers from a Stored Cross Site Scripting (XSS) vulnerability within the POS Add Products functionality. This enables cookie stealing.

5.4CVSS5.2AI score0.00272EPSS
CVE
CVEadded 2021/09/26 9:15 a.m.27 views

CVE-2021-3830

btcpayserver is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

5.4CVSS4.8AI score0.00234EPSS
CVE
CVEadded 2021/05/05 1:15 p.m.23 views

CVE-2021-29247

BTCPay Server through 1.0.7.0 could allow a remote attacker to obtain sensitive information, caused by failure to set the HTTPOnly flag for a cookie.

5.3CVSS5.2AI score0.00279EPSS