Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2022-1584
Reflected XSS in GitHub repository microweber/microweber before 1.2.16. Executing JavaScript as the victim
Microweber Microweber
NA
CVE-2023-0608
Cross-site Scripting (XSS) - DOM in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
383
VMScore
CVE-2022-2353
Prior to microweber/microweber v1.2.20, due to improper neutralization of input, an attacker can steal tokens to perform cross-site request forgery, fetch contents from same-site and redirect a user.
Microweber Microweber
668
VMScore
CVE-2022-2368
Authentication Bypass by Spoofing in GitHub repository microweber/microweber before 1.2.20.
Microweber Microweber
NA
CVE-2023-6599
Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
755
VMScore
CVE-2014-9464
SQL injection vulnerability in Category.php in Microweber CMS 0.95 prior to 20141209 allows remote malicious users to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.
Microweber Microweber
1 EDB exploit
NA
CVE-2023-6566
Business Logic Errors in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
NA
CVE-2023-1081
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.3.
Microweber Microweber
NA
CVE-2022-4647
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
570
VMScore
CVE-2013-5984
Directory traversal vulnerability in userfiles/modules/admin/backup/delete.php in Microweber prior to 0.830 allows remote malicious users to delete arbitrary files via a .. (dot dot) in the file parameter.
Microweber Microweber
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »