Lucene search
K

5 matches found

EUVD
EUVD
added 2025/12/12 12:30 a.m.6 views

EUVD-2024-55342

Microweber 2.0.15 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts into user profile fields. Attackers can input script payloads in the first name field that will execute when the profile is viewed by other users, potentially...

5.3CVSS5.7AI score0.00214EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2024/08/06 3:30 p.m.16 views

Microweber Reflected Cross-site scripting (XSS) vulnerability

A Reflected Cross-site scripting XSS vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter...

7.2CVSS5.9AI score0.00852EPSS
Exploits2References6Affected Software1
OSV
OSV
added 2024/08/06 2:16 p.m.11 views

CVE-2024-40101

A Reflected Cross-site scripting XSS vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter...

6.1CVSS5.8AI score
Exploits0References4
Cvelist
Cvelist
added 2024/08/06 12:0 a.m.37 views

CVE-2024-40101

A Reflected Cross-site scripting XSS vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter...

0.00852EPSS
Exploits2References2
Packet Storm
Packet Storm
added 2024/08/06 12:0 a.m.244 views

Microweber 2.0.15 Cross Site Scripting

Exploit Title: Microweber =v2.0.15 - Reflected Cross-Site Scripting XSS Date: 16.07.2024 Exploit Author: Prerak Mittal Vendor Homepage: https://microweber.org/ Software Link: https://github.com/microweber/microweber/releases/tag/v2.0.15 Version: =v2.0.15 Tested on: Ubuntu 22.04 CVE : CVE-2024-401...

7.4AI score0.00852EPSS
Exploits2
Rows per page
Query Builder