CVE-2022-0963
Summary: Microweber prior to 1.2.12 has a stored XSS vulnerability caused by unrestricted XML file uploads. If an attacker can upload XML files, payloads may execute when users access the uploaded files. Affected software: Microweber CMS (GitHub microweber/microweber) versions before 1.2.12. Root...