Lucene search
K

4 matches found

0day.today
0day.today
added 2024/08/07 12:0 a.m.142 views

Microweber 2.0.15 Cross Site Scripting Vulnerability

Microweber version 1.0 suffers from a cross site scripting vulnerability in the search functionality. Original discovery of cross site scripting in this version is attributed to tmrswrr in June of 2024. Exploit Title: Microweber =v2.0.15 - Reflected Cross-Site Scripting XSS Exploit Author: Prerak...

6.1CVSS6AI score0.00852EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/08/06 12:0 a.m.245 views

Microweber 2.0.15 Cross Site Scripting

Exploit Title: Microweber =v2.0.15 - Reflected Cross-Site Scripting XSS Date: 16.07.2024 Exploit Author: Prerak Mittal Vendor Homepage: https://microweber.org/ Software Link: https://github.com/microweber/microweber/releases/tag/v2.0.15 Version: =v2.0.15 Tested on: Ubuntu 22.04 CVE : CVE-2024-401...

7.4AI score0.00852EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2024/08/06 12:0 a.m.16 views

CVE-2024-40101

A Reflected Cross-site scripting XSS vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter...

6.2AI score0.00852EPSS
Exploits2References2
OSV
OSV
added 2024/08/06 12:0 a.m.11 views

CVE-2024-40101

A Reflected Cross-site scripting XSS vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter...

7.2CVSS5.8AI score0.00852EPSS
Exploits2References5
Rows per page
Query Builder