Описание
Unrestricted XML files leading to cross-site scripting in Microweber
Microweber prior to 1.2.12 allows unrestricted upload of XML files, which malicious actors can exploit to cause a stored cross-site scripting attack.
Пакеты
Наименование
microweber/microweber
composer
Затронутые версииВерсия исправления
< 1.2.12
1.2.12
Связанные уязвимости
CVSS3: 5.4
nvd
почти 4 года назад
Unrestricted XML Files Leads to Stored XSS in GitHub repository microweber/microweber prior to 1.2.12.