Vulnerabilities > Microweber > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-20 | CVE-2020-13241 | Unrestricted Upload of File with Dangerous Type vulnerability in Microweber 1.1.18 Microweber 1.1.18 allows Unrestricted File Upload because admin/view:modules/load_module:users#edit-user=1 does not verify that the file extension (used with the Add Image option on the Edit User screen) corresponds to an image file. | 7.8 |
| 2018-09-16 | CVE-2018-17104 | Cross-Site Request Forgery (CSRF) vulnerability in Microweber 1.0.7 An issue was discovered in Microweber 1.0.7. | 8.8 |