2 matches found
Information Disclosure
microweber/microweber is vulnerable to information disclosure. The vulnerability exists due to the lack of sanitization in apiuser.php file, allowing an attacker to gain access to unauthorized sensitive information...
Access Control Bypass
microweber/microweber is vulnerable to access control bypass. The vulnerability that exists in user permissions in apiuser.php file does not perform sufficient user permissions, allowing unauthorized users to access sensitive information...