Vulnerabilities (CVE)

Filtered by vendor Microweber Subscribe
Filtered by product Microweber
Total 99 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-0721 1 Microweber 1 Microweber 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3.
CVE-2022-0719 1 Microweber 1 Microweber 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3.
CVE-2022-0698 1 Microweber 1 Microweber 2024-11-21 N/A 6.1 MEDIUM
Microweber version 1.3.1 allows an unauthenticated user to perform an account takeover via an XSS on the 'select-file' parameter.
CVE-2022-0690 1 Microweber 1 Microweber 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0689 1 Microweber 1 Microweber 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Use multiple time the one-time coupon in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0688 1 Microweber 1 Microweber 2024-11-21 4.0 MEDIUM 4.9 MEDIUM
Business Logic Errors in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0678 1 Microweber 1 Microweber 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0666 1 Microweber 1 Microweber 2024-11-21 5.0 MEDIUM 7.5 HIGH
CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0660 1 Microweber 1 Microweber 2024-11-21 5.0 MEDIUM 7.5 HIGH
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0638 1 Microweber 1 Microweber 2024-11-21 4.3 MEDIUM 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0597 1 Microweber 1 Microweber 2024-11-21 5.8 MEDIUM 6.1 MEDIUM
Open Redirect in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0596 1 Microweber 1 Microweber 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
Improper Validation of Specified Quantity in Input in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0560 1 Microweber 1 Microweber 2024-11-21 5.8 MEDIUM 6.1 MEDIUM
Open Redirect in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0558 1 Microweber 1 Microweber 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0557 1 Microweber 1 Microweber 2024-11-21 9.0 HIGH 7.2 HIGH
OS Command Injection in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0506 1 Microweber 1 Microweber 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0505 1 Microweber 1 Microweber 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0504 1 Microweber 1 Microweber 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0379 1 Microweber 1 Microweber 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0378 1 Microweber 1 Microweber 2024-11-21 4.3 MEDIUM 5.4 MEDIUM
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.