Lucene search
Veracode Vulnerability DatabaseVERACODE:36048HistoryJun 20, 2022 - 5:37 a.m.
Cross-site Scripting (XSS)
2022-06-2005:37:39
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
25.5%
microweber/microweber is vulnerable to cross site scripting. The vulnerability exists due to a lack of sanitization in the save_from_live_edit function in ContentManagerHelpers.php which allow a malicious user to inject maliciously crafted script into the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | v1.2.8 | |
| microweber/microweber | le | v1.2.8 |
Related
cve
cve
CVE-2021-32856
2023-02-21 15:15:11
CVE-2021-32861
2023-02-21 15:15:11
nvd
nvd
CVE-2021-32856
2023-02-21 15:15:11
CVE-2021-32861
2023-02-21 15:15:11
osv
osv
Microweber Cross-site Scripting vulnerability
2023-02-21 15:30:23
CVE-2021-32856
2023-02-21 15:15:11
prion
prion
Cross site scripting
2023-02-21 15:15:00
github
github
Microweber Cross-site Scripting vulnerability
2023-02-21 15:30:23
cvelist
cvelist
CVE-2021-32856 Microweber vulnerable to Cross-site Scripting
2023-02-20 00:00:00