Lucene search
Christynorl02A86E0D-DFF7-4E27-89D5-2F7DCD4B580CHistorySep 29, 2022 - 4:11 p.m.
Xss vulnerability in Button module
2022-09-2916:11:48
christynorl
www.huntr.dev
9
xss vulnerability
button module
demo.microweber.org
proof of concept
bugbounty
0.001 Low
EPSS
Percentile
20.3%
Steps
1.Visit https://demo.microweber.org
2.Click option ‘Modules’ in the left list
3.Click and go into the ‘Button’
4.Click the ‘edit url’ and Enter the following
><script>alert(1)
Proof of Concept Video
https://1drv.ms/v/s!Ai0UEGpMIb9scRgdvmX1sBCQu4A
Related
osv
osv
Microweber contains Cross-site Scripting
2023-02-01 06:30:28
CVE-2023-0608
2023-02-01 06:15:09
nvd
nvd
CVE-2023-0608
2023-02-01 06:15:09
cve
cve
CVE-2023-0608
2023-02-01 06:15:09
cvelist
cvelist
CVE-2023-0608 Cross-site Scripting (XSS) - DOM in microweber/microweber
2023-02-01 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2023-02-02 06:34:14
cnvd
cnvd
Microweber Cross-Site Scripting Vulnerability (CNVD-2023-07919)
2023-02-09 00:00:00
prion
prion
Cross site scripting
2023-02-01 06:15:00
github
github
Microweber contains Cross-site Scripting
2023-02-01 06:30:28