EPSS
Percentile
21.4%
microweber is vulnerable to cross site scripting. The vulnerability exists due to a lack of santization via the URL schemes, allowing an attacker to execute arbitrary JavaScript in a victim’s browser.
github.com/microweber/microweber/commit/05d55f2befb1b25375ca5371875ff535d6cc5f70
huntr.dev/bounties/0a5ec24c-343e-4cc4-b27b-2beb19a1c35f