What the vulnerability does
01Description
Improper Neutralization of Equivalent Special Elements in GitHub repository btcpayserver/btcpayserver prior to 1.8.0.
CVE-2023-1149
MEDIUM
CVE-2023-1149: Improper Neutralization of Equivalent Special Elements in btcpayserver/btcpayserver
CVSS base score
5.7/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:H
Key dates
02Disclosure timeline
March 2, 2023
CVE published
March 7, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-34359 llama-cpp-python vulnerable to Remote Code Execution by Server-Side Template Injection in Model Metadata
CVE-2024-1883 Reflected XSS in PaperCut NG/MF
CVE-2024-1221 Improper access controls on APIs on Linux and macOS in PaperCut NG/MF
CVE-2023-0493 Improper Neutralization of Equivalent Special Elements in btcpayserver/btcpayserver
CVE-2024-4897 Remote Code Execution in parisneo/lollms-webui
