Lucene search
@huntrdevCVELIST:CVE-2022-0666HistoryFeb 18, 2022 - 2:55 p.m.
CVE-2022-0666 CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in microweber/microweber
2022-02-1814:55:12
CWE-93
@huntrdev
www.cve.org
3
crlf injection
stack trace exposure
demo.microweber.org
packagist microweber/microweber prior to 1.2.11
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
EPSS
0.032
Percentile
91.4%
CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11.
CNA Affected
[
{
"product": "microweber/microweber",
"vendor": "microweber",
"versions": [
{
"lessThan": "1.2.11",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2022-0666
2022-02-18 15:15:07
veracode
veracode
CRLF Injection
2022-02-21 06:54:56
osv
osv
CRLF Injection in microweber
2022-02-19 00:01:35
CVE-2022-0666
2022-02-18 15:15:07
prion
prion
Crlf injection
2022-02-18 15:15:00
nvd
nvd
CVE-2022-0666
2022-02-18 15:15:07
github
github
CRLF Injection in microweber
2022-02-19 00:01:35
nuclei
nuclei
Microweber < 1.2.11 - CRLF Injection
2024-05-31 08:31:21
huntr
huntr
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
EPSS
0.032
Percentile
91.4%
Related for CVELIST:CVE-2022-0666