What the vulnerability does
01Description
Cross-site Scripting in GitHub repository btcpayserver/btcpayserver prior to 1.8.3.
CVE-2023-1270
MEDIUM
CVE-2023-1270: Cross-site Scripting in btcpayserver/btcpayserver
CVSS base score
5.1/10
CVSS vector
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:L
Key dates
02Disclosure timeline
March 8, 2023
CVE published
August 2, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-59764 Multiple vulnerabilities in AndSoft's e-TMS
CVE-2023-34412 Stored XXS vulnerability in mbnet, mbnet.rokey, REX 200 and REX 250
CVE-2024-20539 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
CVE-2025-66119 WordPress Hostel plugin <= 1.1.5.9 - Cross Site Scripting (XSS) vulnerability
CVE-2023-26042 HTML/XSS injection possibilities in Part-DB
