Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-0608
Cross-site Scripting (XSS) - DOM in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2018-1000826
Microweber version <= 1.0.7 contains a Cross Site Scripting (XSS) vulnerability in Admin login form template that can result in Execution of JavaScript code.
Microweber Microweber
6.1
CVSSv3
CVE-2022-4647
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2021-32856
Microweber is a drag and drop website builder and content management system. Versions 1.2.12 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. A ...
Microweber Microweber
6.1
CVSSv3
CVE-2022-2174
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 1.2.18.
Microweber Microweber
NA
CVE-2013-5984
Directory traversal vulnerability in userfiles/modules/admin/backup/delete.php in Microweber prior to 0.830 allows remote malicious users to delete arbitrary files via a .. (dot dot) in the file parameter.
Microweber Microweber
4.8
CVSSv3
CVE-2023-1081
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.3.
Microweber Microweber
9.8
CVSSv3
CVE-2022-0895
Static Code Injection in GitHub repository microweber/microweber before 1.3.
Microweber Microweber
4.8
CVSSv3
CVE-2022-0906
Unrestricted file upload leads to stored XSS in GitHub repository microweber/microweber before 1.1.12.
Microweber Microweber
4.8
CVSSv3
CVE-2022-0912
Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber before 1.2.11.
Microweber Microweber
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »