Lucene search
China National Vulnerability DatabaseCNVD-2022-08213HistoryJan 23, 2022 - 12:00 a.m.
microweber cross-site scripting vulnerability
2022-01-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
21.6%
Microweber is an online store management system from the Microweber community in the United States that provides drag-and-drop functionality. The system includes modules for adding products, images, etc. A cross-site scripting vulnerability exists in microweber, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber microweber | lt | 1.2.11 |
Related
huntr
huntr
Cross-site Scripting (XSS) - Stored in microweber/microweber
2022-01-02 14:51:30
veracode
veracode
Cross-site Scripting (XSS)
2022-01-21 08:38:02
cvelist
cvelist
CVE-2022-0278 Cross-site Scripting (XSS) - Stored in microweber/microweber
2022-01-20 10:10:11
nvd
nvd
CVE-2022-0278
2022-01-20 10:15:09
osv
osv
CVE-2022-0278
2022-01-20 10:15:09
Cross-site Scripting in microweber
2022-01-21 18:06:49
prion
prion
Cross site scripting
2022-01-20 10:15:00
github
github
Cross-site Scripting in microweber
2022-01-21 18:06:49
cve
cve
CVE-2022-0278
2022-01-20 10:15:09