Microweber: >> Microweber Security Vulnerabilities
The microweber application allows large characters to insert in the input field "fist & last name" which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request. in microweber/microweber in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
7.2
EPSS Score
0.011
Published
2022-03-15
Unrestricted XML Files Leads to Stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
5.7
EPSS Score
0.046
Published
2022-03-15
The microweber application allows large characters to insert in the input field "post title" which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request. in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
7.1
EPSS Score
0.018
Published
2022-03-15
Multiple Stored Cross-site Scripting (XSS) Vulnerabilities in Shop's Other Settings, Shop's Autorespond E-mail Settings and Shops' Payments Methods in GitHub repository microweber/microweber prior to 1.2.11.
CVSS Score
6.8
EPSS Score
0.058
Published
2022-03-15
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
8.0
EPSS Score
0.005
Published
2022-03-12
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.11.
CVSS Score
6.8
EPSS Score
0.005
Published
2022-03-12
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
7.1
EPSS Score
0.003
Published
2022-03-12
Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
7.2
EPSS Score
0.061
Published
2022-03-11
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.12.
CVSS Score
6.8
EPSS Score
0.047
Published
2022-03-11
Integer Overflow or Wraparound in GitHub repository microweber/microweber prior to 1.3.
CVSS Score
9.1
EPSS Score
0.008
Published
2022-03-11