CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-33988

Cross Site Scripting (XSS). vulnerability exists in Microweber CMS 1.2.7 via the Login form, which could let a malicious user execute Javascript by Inserting code in the request form.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.6%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/nck0099/osTicket/issues/2
https://github.com/nck0099/osTicket/issues/2

Products affected by CVE-2021-33988

Microweber » Microweber » Version: 1.2.7

cpe:2.3:a:microweber:microweber:1.2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-33988

Products

Pricing

Contact Us