CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0724 – Insecure Storage of Sensitive Information in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0724
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3. Un Almacenamiento no Seguro de Información Confidencial en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3 • https://github.com/microweber/microweber/commit/b592c86d2b927c0cae5b73b87fb541f25e777aa3 https://huntr.dev/bounties/0cdc4a29-dada-4264-b326-8b65b4f11062 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0721 – Insertion of Sensitive Information Into Debugging Code in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0721
Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3. Una Inserción de Información Confidencial en el Código de Depuración en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3 • https://github.com/microweber/microweber/commit/b12e1a490c79460bff019f34b2e17112249b16ec https://huntr.dev/bounties/ae267d39-9750-4c69-be8b-4f915da089fb • CWE-215: Insertion of Sensitive Information Into Debugging Code •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0719 – Cross-site Scripting (XSS) - Reflected in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0719
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Reflejado en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3 • https://github.com/microweber/microweber/commit/a5925f74d39775771d4c37c8d4c1acbb762fda0a https://huntr.dev/bounties/bcdce15b-7f40-4971-a061-c25c6053c312 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0688 – Business Logic Errors in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0688
Business Logic Errors in Packagist microweber/microweber prior to 1.2.11. Unos Errores de Lógica Empresarial en Packagist microweber/microweber versiones anteriores a 1.2.11 • https://github.com/microweber/microweber/commit/a41f0fddaf08ff12b2b82506b1ca9490c93ab605 https://huntr.dev/bounties/051ec6d4-0b0a-41bf-9ded-27813037c9c9 • CWE-840: Business Logic Errors •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0690 – Cross-site Scripting (XSS) - Reflected in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0690
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Reflejado en Packagist microweber/microweber versiones anteriores a 1.2.11 • https://github.com/microweber/microweber/commit/f7f5d41ba1a08ceed37c00d5f70a3f48b272e9f2 https://huntr.dev/bounties/4999a0f4-6efb-4681-b4ba-b36babc366f9 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •