microweber/microweber is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to a lack of user-input sanitization in the X-Forwarded-For
header, which allows an attacker to inject and execute arbitrary JavaScript into the browser.
CPE | Name | Operator | Version |
---|---|---|---|
microweber/microweber | le | 1.3.3.x-dev | |
microweber/microweber | le | 1.3.3.x-dev |