An issue in microweber v.2.0.1 and fixed in v.2.0.4 allows a remote malicious user to obtain sensitive information via the HTTP GET method.
microweber microweber
Vulmon