1377 matches found
Information Disclosure
microweber/microweber is vulnerable to information disclosure. The vulnerability exists due to the lack of sanitization in apiuser.php file, allowing an attacker to gain access to unauthorized sensitive information...
Access Control Bypass
microweber/microweber is vulnerable to access control bypass. The vulnerability that exists in user permissions in apiuser.php file does not perform sufficient user permissions, allowing unauthorized users to access sensitive information...
CVE-2022-0282
Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0282
Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...
Cross site scripting
Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0282 Cross-site Scripting in microweber/microweber
Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0282 Cross-site Scripting in microweber/microweber
Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0282
CVE-2022-0282 affects microweber/microweber prior to version 1.2.11, with a Cross-site Scripting vulnerability described as arising from inadequate filtering of externally entered data during code-segment construction. Impact as described is exploitation of XSS; no exploit details are provided in...
CVE-2022-0281
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0281
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...
Information disclosure
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0281
CVE-2022-0281 affects Microweber (microweber/microweber) prior to 1.2.11, allowing exposure of sensitive information to an unauthorized actor. The Nuclei template and related sources describe an information-disclosure vulnerability with potential data exposure. Remediation is to apply the vendor ...
CVE-2022-0281 Exposure of Sensitive Information to an Unauthorized Actor in microweber/microweber
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0277
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0277
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0278
Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0278
Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...
Cross site scripting
Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...
Design/Logic Flaw
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11...
CVE-2022-0278 Cross-site Scripting (XSS) - Stored in microweber/microweber
Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...