Lucene search
Veracode Vulnerability DatabaseVERACODE:34680HistoryMar 14, 2022 - 2:16 p.m.
Cross-site Scripting (XSS)
2022-03-1414:16:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
21.6%
microweber/microweber is vulnerable to cross-site scripting attacks. An attacker is able to inject and execute malicious javascript via bypassing the file upload filter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | v1.2.11 | |
| microweber/microweber | le | v1.2.11 |
Related
osv
osv
CVE-2022-0926
2022-03-12 10:15:08
Cross-site Scripting in microweber
2022-03-13 00:00:54
cvelist
cvelist
nvd
nvd
CVE-2022-0926
2022-03-12 10:15:08
github
github
Cross-site Scripting in microweber
2022-03-13 00:00:54
prion
prion
Unrestricted file upload
2022-03-12 10:15:00
cnvd
cnvd
Microweber Cross-Site Scripting Vulnerability (CNVD-2022-20797)
2022-03-14 00:00:00
huntr
huntr
File upload filter bypass leading to stored XSS
2022-03-09 18:40:30
cve
cve
CVE-2022-0926
2022-03-12 10:15:08