Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2022-4647
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2022-4617
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
6.1
CVSSv3
CVE-2022-0698
Microweber version 1.3.1 allows an unauthenticated user to perform an account takeover via an XSS on the 'select-file' parameter.
Microweber Microweber 1.3.1
8.8
CVSSv3
CVE-2022-33012
Microweber v1.2.15 exists to allow malicious users to perform an account takeover via a host header injection attack.
Microweber Microweber 1.2.15
6.1
CVSSv3
CVE-2022-3245
HTML injection attack is closely related to Cross-site Scripting (XSS). HTML injection uses HTML to deface the page. XSS, as the name implies, injects JavaScript into the page. Both attacks exploit insufficient validation of user input.
Microweber Microweber
6.1
CVSSv3
CVE-2022-3242
Code Injection in GitHub repository microweber/microweber before 1.3.2.
Microweber Microweber
5.4
CVSSv3
CVE-2022-2777
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.3.1.
Microweber Microweber
6.1
CVSSv3
CVE-2022-2470
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 1.2.21.
Microweber Microweber
4.8
CVSSv3
CVE-2022-2495
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.2.21.
Microweber Microweber
8.8
CVSSv3
CVE-2021-36461
An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows malicious users to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini.
Microweber Microweber 1.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »