CVE-2021-29248

BTCPay Server through 1.0.7.0 could allow a remote attacker to obtain sensitive information, caused by failure to set the Secure flag for a cookie.
References
Configurations

Configuration 1

cpe:2.3:a:btcpayserver:btcpay_server:*:*:*:*:*:*:*:*

Information

Published : 2021-05-05 01:15

Updated : 2022-06-28 02:11


NVD link : CVE-2021-29248

Mitre link : CVE-2021-29248

Products Affected
No products.
CWE
CWE-311

Missing Encryption of Sensitive Data