Описание
Microweber Cross-site Scripting vulnerability
Microweber Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the create new backup function in the endpoint /admin/module/view?type=admin__backup
Пакеты
Наименование
microweber/microweber
composer
Затронутые версииВерсия исправления
<= 2.0.9
Отсутствует
Связанные уязвимости
CVSS3: 6.1
nvd
около 1 года назад
Microweber Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the create new backup function in the endpoint /admin/module/view?type=admin__backup