CVE-2022-0506

Cross-site Scripting (XSS) - Stored in microweber/microweber

CVSS 7.7 HIGHEPSS 0.6%CWE-79

Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Affected products

microweber · microweber/microweber

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/microweber/microweber/commit/05d55f2befb1b25375ca5371875ff535d6cc5f70 https://huntr.dev/bounties/0a5ec24c-343e-4cc4-b27b-2beb19a1c35f