2 matches found
CVE-2025-60954
CVE-2025-60954 affects Microweber CMS 2.0, where the password reset flow enforces no minimum length or complexity, allowing extremely weak (even single-character) passwords and risking account compromise, including admin accounts. The vulnerability surface is the password reset process in Microwe...
Microweber CMS 路径遍历漏洞
Microweber CMS is a drag-and-drop website builder from Microweber Open Source. A path traversal vulnerability exists in Microweber CMS version 1.2.11 and earlier, which stems from a file inclusion issue that could lead to a file readout...