Lucene search
Veracode Vulnerability DatabaseVERACODE:34674HistoryMar 14, 2022 - 10:55 a.m.
Cross-site Scripting (XSS)
2022-03-1410:55:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
50.5%
microweber/microweber is vulnerable to stored cross-site scripting. The vulnerability exists in add/edit tax in microweb due to lack of validations which allows an attacker to inject and execute arbitrary javascript.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | 1.0.7 | |
| microweber/microweber | le | v1.2.11 | |
| microweber/microweber | le | 1.0.7 | |
| microweber/microweber | le | v1.2.11 |
Related
nvd
nvd
CVE-2022-0928
2022-03-11 11:15:09
huntr
huntr
Cross-site Scripting (XSS) - Stored
2022-03-09 17:44:57
osv
osv
Cross-site Scripting in microweber
2022-03-12 00:00:34
CVE-2022-0928
2022-03-11 11:15:09
prion
prion
Cross site scripting
2022-03-11 11:15:00
nuclei
nuclei
Microweber < 1.2.12 - Stored Cross-Site Scripting
2022-08-14 12:03:29
cve
cve
CVE-2022-0928
2022-03-11 11:15:09
cnvd
cnvd
Microweber Cross-Site Scripting Vulnerability (CNVD-2022-21818)
2022-03-15 00:00:00
cvelist
cvelist
CVE-2022-0928 Cross-site Scripting (XSS) - Stored in microweber/microweber
2022-03-11 10:25:10
github
github
Cross-site Scripting in microweber
2022-03-12 00:00:34