Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-1881
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.3.
Microweber Microweber
4.8
CVSSv3
CVE-2023-1081
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.3.
Microweber Microweber
6.1
CVSSv3
CVE-2022-3242
Code Injection in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2022-3245
HTML injection attack is closely related to Cross-site Scripting (XSS). HTML injection uses HTML to deface the page. XSS, as the name implies, injects JavaScript into the page. Both attacks exploit insufficient validation of user input.
Microweber Microweber
7.5
CVSSv3
CVE-2022-0282
Cross-site Scripting in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.1
CVSSv3
CVE-2022-0698
Microweber version 1.3.1 allows an unauthenticated user to perform an account takeover via an XSS on the 'select-file' parameter.
Microweber Microweber 1.3.1
8.8
CVSSv3
CVE-2023-49052
File Upload vulnerability in Microweber v.2.0.4 allows a remote malicious user to execute arbitrary code via a crafted script to the file upload function in the created forms component.
Microweber Microweber 2.0.4
1 Github repository
5.4
CVSSv3
CVE-2023-47379
Microweber CMS version 2.0.1 is vulnerable to stored Cross Site Scripting (XSS) via the profile picture file upload functionality.
Microweber Microweber 2.0.1
6.1
CVSSv3
CVE-2021-33988
Cross Site Scripting (XSS). vulnerability exists in Microweber CMS 1.2.7 via the Login form, which could let a malicious user execute Javascript by Inserting code in the request form.
Microweber Microweber 1.2.7
7.8
CVSSv3
CVE-2020-13241
Microweber 1.1.18 allows Unrestricted File Upload because admin/view:modules/load_module:users#edit-user=1 does not verify that the file extension (used with the Add Image option on the Edit User screen) corresponds to an image file.
Microweber Microweber 1.1.18
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »