CVE-2023-5976 Improper Access Control in microweber/microweber

🗓️ 07 Nov 2023 00:00:32Reported by @huntr_aiType

Improper Access Control in microweber/microweber GitHub repository prior to 2.

Reporter	Title	Published	Views	Family All 11
CNNVD	Microweber Access Control Error Vulnerability	6 Nov 202300:00	–	cnnvd
CVE	CVE-2023-5976	7 Nov 202300:00	–	cve
EUVD	EUVD-2023-3015	3 Oct 202520:07	–	euvd
Github Security Blog	Microweber Improper Access Control vulnerability	14 Nov 202321:30	–	github
NVD	CVE-2023-5976	7 Nov 202304:24	–	nvd
OSV	GHSA-Q57G-38PC-JWV8 Microweber Improper Access Control vulnerability	14 Nov 202321:30	–	osv
Prion	Improper access control	7 Nov 202304:24	–	prion
Positive Technologies	PT-2023-32455 · Unknown · Microweber	7 Nov 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-5976	23 May 202502:11	–	redhatcve
Veracode	Improper Access Control	15 Nov 202307:12	–	veracode

[
  {
    "vendor": "microweber",
    "product": "microweber/microweber",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "2.0",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/microweber/microweber/commit/bc537ebe235bf9924c6557a46114f5f9557cd16a
huntr	www.huntr.com/bounties/2004e4a9-c5f6-406a-89b0-571f808882fa

07 Nov 2023 00:00Current

4.9Medium risk

Vulners AI Score4.9

CVSS 34.6

EPSS0.0008

CWE-284