Lucene search
Veracode Vulnerability DatabaseVERACODE:34671HistoryMar 14, 2022 - 10:28 a.m.
Remote Code Execution (RCE)
2022-03-1410:28:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.001 Low
EPSS
Percentile
42.3%
microweber is vulnerable to remote code execution. The vulnerability exists due a lack of verification of a zip file in the Backup/Restore feature, allowing an attacker to inject maliciously crafted script into the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | v1.2.11 | |
| microweber/microweber | le | v1.2.11 |
Related
nvd
nvd
CVE-2022-0921
2022-03-11 18:15:29
huntr
huntr
Abusing Backup/Restore feature to achieve Remote Code Execution
2022-03-09 18:14:16
cnvd
cnvd
Microweber remote code execution vulnerability
2022-03-15 00:00:00
osv
osv
CVE-2022-0921
2022-03-11 18:15:29
Unrestricted Upload of File with Dangerous Type in Microweber
2022-03-12 00:00:30
prion
prion
Design/Logic Flaw
2022-03-11 18:15:00
cve
cve
CVE-2022-0921
2022-03-11 18:15:29
cvelist
cvelist
github
github
Unrestricted Upload of File with Dangerous Type in Microweber
2022-03-12 00:00:30