Vulnerabilities > Microweber
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-27 | CVE-2022-4732 | Unspecified vulnerability in Microweber Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.3.2. | 7.2 |
| 2022-12-22 | CVE-2022-4647 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3.2. | 6.1 |
| 2022-12-21 | CVE-2022-4617 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3.2. | 6.1 |
| 2022-11-25 | CVE-2022-0698 | Cross-site Scripting vulnerability in Microweber 1.3.1 Microweber version 1.3.1 allows an unauthenticated user to perform an account takeover via an XSS on the 'select-file' parameter. | 6.1 |
| 2022-11-22 | CVE-2022-33012 | Injection vulnerability in Microweber 1.2.15 Microweber v1.2.15 was discovered to allow attackers to perform an account takeover via a host header injection attack. | 8.8 |
| 2022-09-20 | CVE-2022-3245 | Cross-site Scripting vulnerability in Microweber HTML injection attack is closely related to Cross-site Scripting (XSS). | 6.1 |
| 2022-09-20 | CVE-2022-3242 | Cross-site Scripting vulnerability in Microweber Code Injection in GitHub repository microweber/microweber prior to 1.3.2. | 6.1 |
| 2022-08-11 | CVE-2022-2777 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3.1. | 5.4 |
| 2022-07-22 | CVE-2022-2470 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.2.21. | 6.1 |
| 2022-07-22 | CVE-2022-2495 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.21. | 4.8 |