Lucene search
K

24 matches found

Cvelist
Cvelist
added 2022/02/20 2:45 p.m.33 views

CVE-2022-0688 Business Logic Errors in microweber/microweber

Business Logic Errors in Packagist microweber/microweber prior to 1.2.11...

9.4CVSS5.3AI score0.00925EPSS
Exploits1References2
OSV
OSV
added 2022/02/19 4:0 p.m.23 views

CVE-2022-0690 Cross-site Scripting (XSS) - Reflected in microweber/microweber

Cross-site Scripting XSS - Reflected in Packagist microweber/microweber prior to 1.2.11...

8.8CVSS7.7AI score0.01105EPSS
Exploits1References4
Prion
Prion
added 2022/02/19 11:15 a.m.18 views

Cross site scripting

Cross-site Scripting XSS - Reflected in Packagist microweber/microweber prior to 1.2.11...

4.3CVSS5.9AI score0.02273EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2022/02/19 12:1 a.m.39 views

CRLF Injection in microweber

CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11...

7.6CVSS1.7AI score0.44259EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2022/02/18 3:15 p.m.25 views

Crlf injection

CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11...

5CVSS7.7AI score0.44259EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/02/18 2:55 p.m.49 views

CVE-2022-0666 CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in microweber/microweber

CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11...

7.6CVSS7.8AI score0.44259EPSS
Exploits1References2
CVE
CVE
added 2022/02/18 2:55 p.m.120 views

CVE-2022-0666

CVE-2022-0666 affects microweber/microweber prior to 1.2.11. The vulnerability is a CRLF Injection caused by lack of filtering in redirects (notably the redirect_to/redirectUrl path), leading to stack trace exposure. Nuclei and Veracode listings corroborate the issue and note potential impact suc...

7.6CVSS7.5AI score0.44259EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/02/17 4:30 p.m.33 views

CVE-2022-0638 Cross-Site Request Forgery (CSRF) in microweber/microweber

Cross-Site Request Forgery CSRF in Packagist microweber/microweber prior to 1.2.11...

4.3CVSS5AI score0.00363EPSS
Exploits0References2
OSV
OSV
added 2022/02/15 1:50 p.m.25 views

CVE-2022-0597 Open Redirect in microweber/microweber

Open Redirect in Packagist microweber/microweber prior to 1.2.11...

4.3CVSS4.8AI score0.03019EPSS
Exploits1References4
OSV
OSV
added 2022/02/15 12:0 a.m.25 views

CVE-2022-0596 Improper Validation of Specified Quantity in Input in microweber/microweber

Improper Validation of Specified Quantity in Input in Packagist microweber/microweber prior to 1.2.11...

5.4CVSS5.1AI score0.0062EPSS
Exploits1References4
OSV
OSV
added 2022/02/11 8:45 a.m.17 views

CVE-2022-0557 OS Command Injection in microweber/microweber

OS Command Injection in Packagist microweber/microweber prior to 1.2.11...

8.1CVSS7.5AI score0.51193EPSS
Exploits4References6
Prion
Prion
added 2022/02/08 9:15 a.m.12 views

Cross site scripting

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

3.5CVSS5.2AI score0.00631EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/02/08 9:15 a.m.21 views

Information disclosure

Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11...

4CVSS6.3AI score0.01151EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/02/08 8:55 a.m.18 views

CVE-2022-0504 Generation of Error Message Containing Sensitive Information in microweber/microweber

Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11...

6.5CVSS6.4AI score0.01151EPSS
Exploits1References4
OSV
OSV
added 2022/02/08 8:55 a.m.30 views

CVE-2022-0505 Cross-Site Request Forgery (CSRF) in microweber/microweber

Cross-Site Request Forgery CSRF in Packagist microweber/microweber prior to 1.2.11...

5.7CVSS5.7AI score0.00679EPSS
Exploits1References4
CVE
CVE
added 2022/01/26 3:25 p.m.134 views

CVE-2022-0378

CVE-2022-0378 affects Microweber (Packagist microweber/microweber) with a reflected XSS vulnerability in versions prior to 1.2.11. The issue is described across multiple connected sources as a reflected cross-site scripting flaw that can allow arbitrary JavaScript execution in the victim’s browse...

7.1CVSS5.4AI score0.03866EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/01/26 3:25 p.m.35 views

CVE-2022-0378 Cross-site Scripting (XSS) - Reflected in microweber/microweber

Cross-site Scripting XSS - Reflected in Packagist microweber/microweber prior to 1.2.11...

7.1CVSS6.5AI score0.03866EPSS
Exploits1References4
OSV
OSV
added 2022/01/26 3:25 p.m.31 views

CVE-2022-0379 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

8.1CVSS7.1AI score0.00856EPSS
Exploits1References4
OSV
OSV
added 2022/01/21 6:6 p.m.15 views

GHSA-7WV8-G97R-432H Exposure of Sensitive Information to an Unauthorized Actor in microweber

Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS7.3AI score0.1201EPSS
Exploits1References4
NVD
NVD
added 2022/01/20 12:15 p.m.18 views

CVE-2022-0282

Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11...

7.5CVSS0.01555EPSS
Exploits1References2
Rows per page
Query Builder