Lucene search
+L

1377 matches found

Veracode
Veracode
added 2022/01/21 8:24 a.m.16 views

Information Disclosure

microweber/microweber is vulnerable to information disclosure. The vulnerability exists due to the lack of sanitization in apiuser.php file, allowing an attacker to gain access to unauthorized sensitive information...

7.5CVSS2.6AI score0.1201EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2022/01/21 7:57 a.m.15 views

Access Control Bypass

microweber/microweber is vulnerable to access control bypass. The vulnerability that exists in user permissions in apiuser.php file does not perform sufficient user permissions, allowing unauthorized users to access sensitive information...

6.5CVSS4.8AI score0.01121EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/20 12:15 p.m.5 views

CVE-2022-0282

Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS7.2AI score0.01555EPSS
Exploits1References3
NVD
NVD
added 2022/01/20 12:15 p.m.19 views

CVE-2022-0282

Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS0.01555EPSS
Exploits1References2
Prion
Prion
added 2022/01/20 12:15 p.m.20 views

Cross site scripting

Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...

5CVSS7.3AI score0.01555EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/01/20 11:15 a.m.28 views

CVE-2022-0282 Cross-site Scripting in microweber/microweber

Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...

4.3CVSS7.5AI score0.01555EPSS
Exploits1References2
OSV
OSV
added 2022/01/20 11:15 a.m.20 views

CVE-2022-0282 Cross-site Scripting in microweber/microweber

Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...

4.3CVSS7.3AI score0.01555EPSS
Exploits1References4
CVE
CVE
added 2022/01/20 11:15 a.m.82 views

CVE-2022-0282

CVE-2022-0282 affects microweber/microweber prior to version 1.2.11, with a Cross-site Scripting vulnerability described as arising from inadequate filtering of externally entered data during code-segment construction. Impact as described is exploitation of XSS; no exploit details are provided in...

7.5CVSS7.3AI score0.01555EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/01/20 11:15 a.m.22 views

CVE-2022-0281

Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS0.1201EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/01/20 11:15 a.m.8 views

CVE-2022-0281

Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS7.2AI score0.1201EPSS
Exploits1References4
Prion
Prion
added 2022/01/20 11:15 a.m.18 views

Information disclosure

Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...

5CVSS7.4AI score0.1201EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/01/20 11:10 a.m.108 views

CVE-2022-0281

CVE-2022-0281 affects Microweber (microweber/microweber) prior to 1.2.11, allowing exposure of sensitive information to an unauthorized actor. The Nuclei template and related sources describe an information-disclosure vulnerability with potential data exposure. Remediation is to apply the vendor ...

7.5CVSS7.4AI score0.1201EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/01/20 11:10 a.m.18 views

CVE-2022-0281 Exposure of Sensitive Information to an Unauthorized Actor in microweber/microweber

Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS7.4AI score0.1201EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/01/20 10:15 a.m.7 views

CVE-2022-0277

Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11...

6.5CVSS6.5AI score0.01121EPSS
Exploits1References3
NVD
NVD
added 2022/01/20 10:15 a.m.27 views

CVE-2022-0277

Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11...

6.5CVSS0.01121EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/01/20 10:15 a.m.6 views

CVE-2022-0278

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

7.2CVSS6.5AI score0.00728EPSS
Exploits1References3
NVD
NVD
added 2022/01/20 10:15 a.m.30 views

CVE-2022-0278

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

7.2CVSS0.00728EPSS
Exploits1References2
Prion
Prion
added 2022/01/20 10:15 a.m.9 views

Cross site scripting

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

3.5CVSS5.2AI score0.00728EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/01/20 10:15 a.m.16 views

Design/Logic Flaw

Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11...

4CVSS6.4AI score0.01121EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/01/20 10:10 a.m.29 views

CVE-2022-0278 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

7.2CVSS6.6AI score0.00728EPSS
Exploits1References4
Rows per page
Query Builder