CVE-2022-1584

Reflected XSS in microweber/microweber

CVSS 6.3 MEDIUMEPSS 0.8%CWE-79

Reflected XSS in GitHub repository microweber/microweber prior to 1.2.16. Executing JavaScript as the victim

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

microweber · microweber/microweber

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/microweber/microweber/commit/527abd148e6b7aff8df92a9f1aa951e5bebac59c https://huntr.dev/bounties/69f4ca67-d615-4f25-b2d1-19df7bf1107d