EPSS
Percentile
21.4%
microweber/microweber is vulnerable to cross-site scripting. The vulnerability exists in checkouts of web.php during routing which allows an attacker to insert arbitrary Javascript.
checkouts
web.php
github.com/advisories/GHSA-prff-6j8q-vrv7
github.com/microweber/microweber/commit/f017cbfbd5c4f097d2c78c5e15b6c8a9da479d7b
huntr.dev/bounties/933f94b8-c5e7-4c3a-92e0-4d1577d5fee6
huntr.dev/bounties/933f94b8-c5e7-4c3a-92e0-4d1577d5fee6/