Vulnerabilities > Microweber

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-11	CVE-2022-0921	Unrestricted Upload of File with Dangerous Type vulnerability in Microweber Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12. network low complexity microweber CWE-434	6.5
2022-03-11	CVE-2022-0928	Cross-site Scripting vulnerability in Microweber Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.12. network microweber CWE-79	3.5
2022-03-11	CVE-2022-0912	Unrestricted Upload of File with Dangerous Type vulnerability in Microweber Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.2.11. network microweber CWE-434	3.5
2022-03-11	CVE-2022-0913	Integer Overflow or Wraparound vulnerability in Microweber Integer Overflow or Wraparound in GitHub repository microweber/microweber prior to 1.3. network low complexity microweber CWE-190	5.0
2022-03-10	CVE-2022-0906	Cross-site Scripting vulnerability in Microweber Unrestricted file upload leads to stored XSS in GitHub repository microweber/microweber prior to 1.1.12. network microweber CWE-79	3.5
2022-03-10	CVE-2022-0895	Unspecified vulnerability in Microweber Static Code Injection in GitHub repository microweber/microweber prior to 1.3. network low complexity microweber critical	9.8
2022-03-09	CVE-2022-0896	Code Injection vulnerability in Microweber Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3. network microweber CWE-94	6.8
2022-03-04	CVE-2022-0855	Use of Incorrectly-Resolved Name or Reference vulnerability in Microweber Whmcs Improper Resolution of Path Equivalence in GitHub repository microweber-dev/whmcs_plugin prior to 0.0.4. network microweber CWE-706	5.8
2022-03-01	CVE-2022-0777	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Microweber Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3. network low complexity microweber CWE-640	5.0
2022-02-26	CVE-2022-0723	Cross-site Scripting vulnerability in Microweber Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.2.11. network microweber CWE-79	3.5

Vulnerabilities > Microweber {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Microweber"}]}

Vulnerabilities > Microweber