Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microweber microweber vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-2014
Cross-site Scripting (XSS) - Generic in GitHub repository microweber/microweber before 1.3.3.
Microweber Microweber
6.5
CVSSv3
CVE-2023-2239
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository microweber/microweber before 1.3.4.
Microweber Microweber
6.1
CVSSv3
CVE-2022-2353
Prior to microweber/microweber v1.2.20, due to improper neutralization of input, an attacker can steal tokens to perform cross-site request forgery, fetch contents from same-site and redirect a user.
Microweber Microweber
5.4
CVSSv3
CVE-2023-3142
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
6.1
CVSSv3
CVE-2023-5244
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber before 2.0.
Microweber Microweber
9.8
CVSSv3
CVE-2022-2368
Authentication Bypass by Spoofing in GitHub repository microweber/microweber before 1.2.20.
Microweber Microweber
5.4
CVSSv3
CVE-2022-0928
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber before 1.2.12.
Microweber Microweber
5.5
CVSSv3
CVE-2022-0968
The microweber application allows large characters to insert in the input field "fist & last name" which can allow malicious users to cause a Denial of Service (DoS) via a crafted HTTP request. in microweber/microweber in GitHub repository microweber/microweber befo...
Microweber Microweber
6.1
CVSSv3
CVE-2022-1555
DOM XSS in microweber ver 1.2.15 in GitHub repository microweber/microweber before 1.2.16. inject arbitrary js code, deface website, steal cookie...
Microweber Microweber
8.8
CVSSv3
CVE-2023-2240
Improper Privilege Management in GitHub repository microweber/microweber before 1.3.4.
Microweber Microweber
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »