Количество 2
Количество 2
CVE-2022-1439
Reflected XSS on demo.microweber.org/demo/module/ in GitHub repository microweber/microweber prior to 1.2.15. Execute Arbitrary JavaScript as the attacked user. It's the only payload I found working, you might need to press "tab" but there is probably a paylaod that runs without user interaction.
GHSA-9w7h-3wwh-6m5q
Cross-site Scripting in Microweber
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-1439 Reflected XSS on demo.microweber.org/demo/module/ in GitHub repository microweber/microweber prior to 1.2.15. Execute Arbitrary JavaScript as the attacked user. It's the only payload I found working, you might need to press "tab" but there is probably a paylaod that runs without user interaction. | CVSS3: 6.1 | 41% Средний | почти 4 года назад |
| GHSA-9w7h-3wwh-6m5q Cross-site Scripting in Microweber | CVSS3: 6.3 | 41% Средний | почти 4 года назад |
Уязвимостей на страницу