Vulnerabilities > Mibew

DATE	CVE	VULNERABILITY TITLE	RISK
2020-08-10	CVE-2020-17476	Cross-site Scripting vulnerability in Mibew Messenger Mibew Messenger before 3.2.7 allows XSS via a crafted user name. network mibew CWE-79	4.3
2012-02-14	CVE-2012-0829	Cross-Site Request Forgery (CSRF) vulnerability in Mibew Messenger Multiple cross-site request forgery (CSRF) vulnerabilities in Mibew Messenger 1.6.4 and earlier allow remote attackers to hijack the authentication of operators for requests that insert cross-site scripting (XSS) sequences via the (1) address or (2) threadid parameters to operator/ban.php; or (3) geolinkparams, (4) title, or (5) chattitle parameters to operator/settings.php. network mibew CWE-352	6.0

Vulnerabilities > Mibew {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Mibew"}]}