Microweber

microweber

115 CVEs • 2 products

Products (2)

Click to collapse

Toggle

CVEs (115)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-0719 1Microweber 1Microweber Nov 21, 2024 Feb 23, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3.
CVE-2022-0688 1Microweber 1Microweber Nov 21, 2024 Feb 20, 2022 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Business Logic Errors in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0690 1Microweber 1Microweber Nov 21, 2024 Feb 19, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0689 1Microweber 1Microweber Nov 21, 2024 Feb 19, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Use multiple time the one-time coupon in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0678 1Microweber 1Microweber Nov 21, 2024 Feb 19, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0666 1Microweber 1Microweber Nov 21, 2024 Feb 18, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0660 1Microweber 1Microweber Nov 21, 2024 Feb 18, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0638 1Microweber 1Microweber Nov 21, 2024 Feb 17, 2022 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0597 1Microweber 1Microweber Nov 21, 2024 Feb 15, 2022 N/A· v4 6.1 MEDIUM· v3 5.8 MEDIUM· v2 Open Redirect in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0596 1Microweber 1Microweber Nov 21, 2024 Feb 15, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Improper Validation of Specified Quantity in Input in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0560 1Microweber 1Microweber Nov 21, 2024 Feb 11, 2022 N/A· v4 6.1 MEDIUM· v3 5.8 MEDIUM· v2 Open Redirect in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0557 1Microweber 1Microweber Nov 21, 2024 Feb 11, 2022 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 OS Command Injection in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0558 1Microweber 1Microweber Nov 21, 2024 Feb 10, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0506 1Microweber 1Microweber Nov 21, 2024 Feb 8, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0505 1Microweber 1Microweber Nov 21, 2024 Feb 8, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0504 1Microweber 1Microweber Nov 21, 2024 Feb 8, 2022 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0379 1Microweber 1Microweber Nov 21, 2024 Jan 26, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0378 1Microweber 1Microweber Nov 21, 2024 Jan 26, 2022 N/A· v4 5.4 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0282 1Microweber 1Microweber Feb 24, 2026 Jan 20, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11.
CVE-2022-0281 1Microweber 1Microweber Nov 21, 2024 Jan 20, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11.

Previous 1 2 3 456 Next