Vulnerabilities > Microweber > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-08 | CVE-2022-0504 | Unspecified vulnerability in Microweber Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11. | 6.5 |
| 2022-02-08 | CVE-2022-0505 | Unspecified vulnerability in Microweber Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11. | 6.5 |
| 2022-02-08 | CVE-2022-0506 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11. | 5.4 |
| 2022-01-26 | CVE-2022-0378 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11. | 5.4 |
| 2022-01-26 | CVE-2022-0379 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11. | 5.4 |
| 2022-01-20 | CVE-2022-0277 | Unspecified vulnerability in Microweber Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11. | 6.5 |
| 2022-01-20 | CVE-2022-0278 | Unspecified vulnerability in Microweber Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11. | 5.4 |
| 2021-10-19 | CVE-2021-33988 | Cross-site Scripting vulnerability in Microweber 1.2.7 Cross Site Scripting (XSS). | 6.1 |
| 2020-11-09 | CVE-2020-23139 | Improper Authentication vulnerability in Microweber 1.1.18 Microweber 1.1.18 is affected by broken authentication and session management. | 5.5 |
| 2020-11-09 | CVE-2020-23136 | Insufficient Session Expiration vulnerability in Microweber 1.1.18 Microweber v1.1.18 is affected by no session expiry after log-out. | 5.5 |