Vulnerabilities > Microweber
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-18 | CVE-2022-0666 | CRLF Injection vulnerability in Microweber CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11. | 5.0 |
| 2022-02-18 | CVE-2022-0660 | Information Exposure Through an Error Message vulnerability in Microweber Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11. | 5.0 |
| 2022-02-17 | CVE-2022-0638 | Cross-Site Request Forgery (CSRF) vulnerability in Microweber Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11. | 4.3 |
| 2022-02-15 | CVE-2022-0596 | Improper Validation of Specified Quantity in Input vulnerability in Microweber Improper Validation of Specified Quantity in Input in Packagist microweber/microweber prior to 1.2.11. | 4.3 |
| 2022-02-15 | CVE-2022-0597 | Open Redirect vulnerability in Microweber Open Redirect in Packagist microweber/microweber prior to 1.2.11. | 5.8 |
| 2022-02-11 | CVE-2022-0560 | Open Redirect vulnerability in Microweber Open Redirect in Packagist microweber/microweber prior to 1.2.11. | 5.8 |
| 2022-02-11 | CVE-2022-0557 | OS Command Injection vulnerability in Microweber OS Command Injection in Packagist microweber/microweber prior to 1.2.11. | 9.0 |
| 2022-02-10 | CVE-2022-0558 | Cross-site Scripting vulnerability in Microweber Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11. | 3.5 |
| 2022-02-08 | CVE-2022-0504 | Information Exposure Through an Error Message vulnerability in Microweber Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11. | 4.0 |
| 2022-02-08 | CVE-2022-0505 | Cross-Site Request Forgery (CSRF) vulnerability in Microweber Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11. | 4.3 |