2 matches found
PT-2023-30436 · Microweber · Microweber Cms
Name of the Vulnerable Software and Affected Versions: Microweber CMS versions 2.0.1 through 2.0.2 Description: The issue is related to stored Cross Site Scripting XSS via the profile picture file upload functionality. This allows an attacker to inject malicious scripts into the website,...
PT-2022-24022
Name of the Vulnerable Software and Affected Versions loader-utils versions prior to 1.4.1 loader-utils versions prior to 2.0.3 Description The issue is related to a prototype pollution vulnerability in the parseQuery function within parseQuery.js in webpack loader-utils. This vulnerability is...