Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2022-1504
XSS in /demo/module/?module=HERE in GitHub repository microweber/microweber before 1.2.15. Typical impact of XSS attacks.
Microweber Microweber
6.1
CVSSv3
CVE-2022-1555
DOM XSS in microweber ver 1.2.15 in GitHub repository microweber/microweber before 1.2.16. inject arbitrary js code, deface website, steal cookie...
Microweber Microweber
6.1
CVSSv3
CVE-2022-1584
Reflected XSS in GitHub repository microweber/microweber before 1.2.16. Executing JavaScript as the victim
Microweber Microweber
8.8
CVSSv3
CVE-2022-1631
Users Account Pre-Takeover or Users Account Takeover. in GitHub repository microweber/microweber before 1.2.15. Victim Account Take Over. Since, there is no email confirmation, an attacker can easily create an account in the application using the Victim’s Email. This allows...
Microweber Microweber
6.5
CVSSv3
CVE-2022-0277
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
5.4
CVSSv3
CVE-2022-0278
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
7.5
CVSSv3
CVE-2022-0281
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
5.4
CVSSv3
CVE-2022-0379
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.1
CVSSv3
CVE-2021-32856
Microweber is a drag and drop website builder and content management system. Versions 1.2.12 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. A ...
Microweber Microweber
7.5
CVSSv3
CVE-2023-5318
Use of Hard-coded Credentials in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »