Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-32856
Microweber is a drag and drop website builder and content management system. Versions 1.2.12 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. A ...
Microweber Microweber
4.8
CVSSv3
CVE-2023-1081
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.3.
Microweber Microweber
9.8
CVSSv3
CVE-2022-2368
Authentication Bypass by Spoofing in GitHub repository microweber/microweber before 1.2.20.
Microweber Microweber
5.4
CVSSv3
CVE-2022-2777
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.1.
Microweber Microweber
6.5
CVSSv3
CVE-2022-0277
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
7.5
CVSSv3
CVE-2022-0281
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.1
CVSSv3
CVE-2023-5244
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
6.1
CVSSv3
CVE-2022-2130
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 1.2.17.
Microweber Microweber
6.1
CVSSv3
CVE-2022-2353
Prior to microweber/microweber v1.2.20, due to improper neutralization of input, an attacker can steal tokens to perform cross-site request forgery, fetch contents from same-site and redirect a user.
Microweber Microweber
7.5
CVSSv3
CVE-2023-48122
An issue in microweber v.2.0.1 and fixed in v.2.0.4 allows a remote malicious user to obtain sensitive information via the HTTP GET method.
Microweber Microweber
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »