Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:microweber:microweber:0.931:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2022-0954 |
Multiple Stored Cross-site Scripting (XSS) Vulnerabilities in Shop's Other Settings, Shop's Autorespond E-mail Settings and Shops' Payments Methods in GitHub repository microweber/microweber prior to 1.2.11. Published: March 15, 2022; 8:15:10 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0930 |
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12. Published: March 12, 2022; 9:15:07 AM -0500 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0929 |
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.11. Published: March 12, 2022; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2022-0926 |
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12. Published: March 12, 2022; 5:15:08 AM -0500 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0921 |
Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12. Published: March 11, 2022; 1:15:29 PM -0500 |
V4.0:(not available) V3.1: 6.7 MEDIUM V2.0: 6.5 MEDIUM |
CVE-2022-0928 |
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.12. Published: March 11, 2022; 6:15:09 AM -0500 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0913 |
Integer Overflow or Wraparound in GitHub repository microweber/microweber prior to 1.3. Published: March 11, 2022; 5:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2022-0912 |
Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.2.11. Published: March 11, 2022; 5:15:07 AM -0500 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0906 |
Unrestricted file upload leads to stored XSS in GitHub repository microweber/microweber prior to 1.1.12. Published: March 10, 2022; 10:15:10 AM -0500 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0895 |
Static Code Injection in GitHub repository microweber/microweber prior to 1.3. Published: March 10, 2022; 6:15:07 AM -0500 |
V4.0:(not available) V3.1: 9.8 CRITICAL V2.0: 7.5 HIGH |
CVE-2022-0896 |
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3. Published: March 09, 2022; 7:15:07 AM -0500 |
V4.0:(not available) V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
CVE-2022-0777 |
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3. Published: March 01, 2022; 4:15:07 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2022-0723 |
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.2.11. Published: February 26, 2022; 6:15:07 AM -0500 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0763 |
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3. Published: February 26, 2022; 5:15:08 AM -0500 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0762 |
Incorrect Authorization in GitHub repository microweber/microweber prior to 1.3. Published: February 26, 2022; 5:15:08 AM -0500 |
V4.0:(not available) V3.1: 4.3 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2022-0724 |
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3. Published: February 23, 2022; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2022-0721 |
Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3. Published: February 23, 2022; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2022-0719 |
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3. Published: February 23, 2022; 6:15:07 AM -0500 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2022-0688 |
Business Logic Errors in Packagist microweber/microweber prior to 1.2.11. Published: February 20, 2022; 10:15:07 AM -0500 |
V4.0:(not available) V3.1: 4.9 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2022-0690 |
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11. Published: February 19, 2022; 12:15:08 PM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |