4 matches found
CVE-2022-2777
Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.1...
CVE-2022-2777
Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.1...
CVE-2022-2777 Cross-site Scripting (XSS) - Stored in microweber/microweber
Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.1...
CVE-2022-2777
CVE-2022-2777 is a stored XSS in Microweber (microweber/microweber) prior to v1.3.1. The vulnerability affects the title parameter in the body of POST requests when creating/editing a category, allowing injection that is stored and rendered to other users. Multiple sources (NVD, OSV, CVE lists, a...