Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2022-0724
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber before 1.3.
Microweber Microweber
4
CVSSv2
CVE-2022-0504
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
4.3
CVSSv2
CVE-2022-0505
Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
3.5
CVSSv2
CVE-2022-0558
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
5.8
CVSSv2
CVE-2022-0560
Open Redirect in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.5
CVSSv2
CVE-2021-36461
An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows malicious users to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini.
Microweber Microweber 1.1.3
7.2
CVSSv2
CVE-2020-13241
Microweber 1.1.18 allows Unrestricted File Upload because admin/view:modules/load_module:users#edit-user=1 does not verify that the file extension (used with the Add Image option on the Edit User screen) corresponds to an image file.
Microweber Microweber 1.1.18
NA
CVE-2023-49052
File Upload vulnerability in Microweber v.2.0.4 allows a remote malicious user to execute arbitrary code via a crafted script to the file upload function in the created forms component.
Microweber Microweber 2.0.4
1 Github repository
4.3
CVSSv2
CVE-2021-33988
Cross Site Scripting (XSS). vulnerability exists in Microweber CMS 1.2.7 via the Login form, which could let a malicious user execute Javascript by Inserting code in the request form.
Microweber Microweber 1.2.7
NA
CVE-2023-47379
Microweber CMS version 2.0.1 is vulnerable to stored Cross Site Scripting (XSS) via the profile picture file upload functionality.
Microweber Microweber 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »