CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-5318 – Use of Hard-coded Credentials in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-5318
Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0. Uso de credenciales codificadas en el repositorio de GitHub microweber/microweber anterior a 2.0. • https://github.com/microweber/microweber/commit/c48b34dfd6cae7a55b452280d692dc62512574b0 https://huntr.dev/bounties/17826bdd-8136-48ae-afb9-af627cb6fd5d • CWE-798: Use of Hard-coded Credentials •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-5244 – Cross-site Scripting (XSS) - Reflected in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-5244
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 2.0. Cross-site Scripting (XSS): reflejado en el repositorio de GitHub microweber/microweber anterior a 2.0. • https://github.com/microweber/microweber/commit/1cb846f8f54ff6f5c668f3ae64dd81740a7e8968 https://huntr.dev/bounties/a3bd58ba-ca59-4cba-85d1-799f73a76470 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3142 – Cross-site Scripting (XSS) - Stored in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-3142
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 2.0. • https://github.com/microweber/microweber/commit/42efa981a2239d042d910069952d6276497bdcf1 https://huntr.dev/bounties/d00686b0-f89a-4e14-98d7-b8dd3f92a6e5 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2239 – Exposure of Private Personal Information to an Unauthorized Actor in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-2239
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository microweber/microweber prior to 1.3.4. • https://github.com/microweber/microweber/commit/b0644cb3411b36b6ccc2ff7cdf7af3fa49525baa https://huntr.dev/bounties/edeff16b-fc71-4e26-8d2d-dfe7bb5e7868 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2240 – Improper Privilege Management in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-2240
Improper Privilege Management in GitHub repository microweber/microweber prior to 1.3.4. • https://github.com/microweber/microweber/commit/f43d5b767ad5814fc5f84bbaf0b77996262f3a4b https://huntr.dev/bounties/8f595559-7b4b-4b00-954c-7a627766e203 • CWE-269: Improper Privilege Management •