EPSS
Percentile
80.4%
microweber is vulnerable to information disclosure. Sensitive information are leaked via a 500 error message when a user enters anything in search= parameter as in https://demo.microweber.org/demo/admin/view:modules/load_module:comments#search= .
https://demo.microweber.org/demo/admin/view:modules/load_module:comments#search=
github.com/microweber/microweber/commit/2417bd2eda2aa2868c1dad1abf62341f22bfc20a
huntr.dev/bounties/01fd2e0d-b8cf-487f-a16c-7b088ef3a291
huntr.dev/bounties/01fd2e0d-b8cf-487f-a16c-7b088ef3a291/