btcpayserver is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
XSS
Btcpay Server
NVD
GitHub
CVSS 3.1
5.4
EPSS
0.5%
sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Rated high severity (CVSS 7.0).
SSH
Privilege Escalation
Openssh
Fedora
Active Iq Unified Manager
+9
NVD
VulDB
CVSS 3.1
7.0
EPSS
0.3%