Описание
Microweber Cross-site Scripting vulnerability
Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the campaign Name (Internal Name) field in the Add new campaign function
Пакеты
Наименование
microweber/microweber
composer
Затронутые версииВерсия исправления
<= 2.0.9
Отсутствует
Связанные уязвимости
CVSS3: 4.7
nvd
около 1 года назад
Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the campaign Name (Internal Name) field in the Add new campaign function