← Back to CVE List

CVE-2021-29250

Published: 2021-05-05T13:15Z
Last Modified: 2024-11-21T06:00Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
BTCPay Server through 1.0.7.0 suffers from a Stored Cross Site Scripting (XSS) vulnerability within the POS Add Products functionality. This enables cookie stealing. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt