Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-0724
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber before 1.3.
Microweber Microweber
6.5
CVSSv3
CVE-2022-0505
Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.5
CVSSv3
CVE-2022-0504
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.5
CVSSv3
CVE-2022-0277
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber before 1.2.11.
Microweber Microweber
6.1
CVSSv3
CVE-2023-5244
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
6.1
CVSSv3
CVE-2021-32856
Microweber is a drag and drop website builder and content management system. Versions 1.2.12 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. A ...
Microweber Microweber
6.1
CVSSv3
CVE-2022-4647
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2022-4617
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2022-0698
Microweber version 1.3.1 allows an unauthenticated user to perform an account takeover via an XSS on the 'select-file' parameter.
Microweber Microweber 1.3.1
6.1
CVSSv3
CVE-2022-3245
HTML injection attack is closely related to Cross-site Scripting (XSS). HTML injection uses HTML to deface the page. XSS, as the name implies, injects JavaScript into the page. Both attacks exploit insufficient validation of user input.
Microweber Microweber
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »