Vulnerabilities > Microweber > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-09 | CVE-2022-0896 | Code Injection vulnerability in Microweber Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3. | 6.8 |
| 2022-03-04 | CVE-2022-0855 | Use of Incorrectly-Resolved Name or Reference vulnerability in Microweber Whmcs Improper Resolution of Path Equivalence in GitHub repository microweber-dev/whmcs_plugin prior to 0.0.4. | 5.8 |
| 2022-03-01 | CVE-2022-0777 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Microweber Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3. | 5.0 |
| 2022-02-26 | CVE-2022-0762 | Incorrect Authorization vulnerability in Microweber Incorrect Authorization in GitHub repository microweber/microweber prior to 1.3. | 4.3 |
| 2022-02-23 | CVE-2022-0721 | Unspecified vulnerability in Microweber Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3. | 4.0 |
| 2022-02-23 | CVE-2022-0724 | Insecure Storage of Sensitive Information vulnerability in Microweber Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3. | 4.0 |
| 2022-02-20 | CVE-2022-0688 | Unspecified vulnerability in Microweber Business Logic Errors in Packagist microweber/microweber prior to 1.2.11. | 4.0 |
| 2022-02-19 | CVE-2022-0690 | Cross-site Scripting vulnerability in Microweber Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11. | 4.3 |
| 2022-02-19 | CVE-2022-0689 | Unspecified vulnerability in Microweber Use multiple time the one-time coupon in Packagist microweber/microweber prior to 1.2.11. | 5.0 |
| 2022-02-19 | CVE-2022-0678 | Cross-site Scripting vulnerability in Microweber Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11. | 4.3 |