Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2022-0963
Unrestricted XML Files Leads to Stored XSS in GitHub repository microweber/microweber before 1.2.12.
Microweber Microweber
4
CVSSv2
CVE-2022-0968
The microweber application allows large characters to insert in the input field "fist & last name" which can allow malicious users to cause a Denial of Service (DoS) via a crafted HTTP request. in microweber/microweber in GitHub repository microweber/microweber befo...
Microweber Microweber
5
CVSSv2
CVE-2022-1036
Able to create an account with long password leads to memory corruption / Integer Overflow in GitHub repository microweber/microweber before 1.2.12.
Microweber Microweber
NA
CVE-2023-48122
An issue in microweber v.2.0.1 and fixed in v.2.0.4 allows a remote malicious user to obtain sensitive information via the HTTP GET method.
Microweber Microweber
NA
CVE-2023-6832
Business Logic Errors in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
5
CVSSv2
CVE-2020-13405
userfiles/modules/users/controller/controller.php in Microweber prior to 1.1.20 allows an unauthenticated user to disclose the users database via a /modules/ POST request.
Microweber Microweber
1 Github repository
4.3
CVSSv2
CVE-2022-0378
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
17 Github repositories
3.5
CVSSv2
CVE-2022-0558
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
4.3
CVSSv2
CVE-2022-2353
Prior to microweber/microweber v1.2.20, due to improper neutralization of input, an attacker can steal tokens to perform cross-site request forgery, fetch contents from same-site and redirect a user.
Microweber Microweber
4
CVSSv2
CVE-2022-0504
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »