Lucene search
Veracode Vulnerability DatabaseVERACODE:39483HistoryMar 02, 2023 - 3:04 a.m.
Cross-Site Scripting (XSS)
2023-03-0203:04:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross-site scripting
microweber
admin settings
user inputs
javascript
vulnerability
software
EPSS
0.001
Percentile
21.0%
microweber/microweber is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to a lack of santization of user inputs in the admin settings, which allows an admin authenticated attacker to inject and execute arbitrary JavaScript into the system.
Related
nvd
nvd
CVE-2023-1081
2023-02-28 02:15:08
prion
prion
Cross site scripting
2023-02-28 02:15:00
github
github
Microweber Cross-site Scripting vulnerability
2023-02-28 03:30:18
osv
osv
Microweber Cross-site Scripting vulnerability
2023-02-28 03:30:18
CVE-2023-1081
2023-02-28 02:15:08
cve
cve
CVE-2023-1081
2023-02-28 02:15:08
huntr
huntr
Stored XSS in the module named "Website settings"
2022-12-24 15:28:11
cvelist
cvelist
CVE-2023-1081 Cross-site Scripting (XSS) - Stored in microweber/microweber
2023-02-28 00:00:00