CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3142 – Cross-site Scripting (XSS) - Stored in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-3142
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 2.0. • https://github.com/microweber/microweber/commit/42efa981a2239d042d910069952d6276497bdcf1 https://huntr.dev/bounties/d00686b0-f89a-4e14-98d7-b8dd3f92a6e5 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2239 – Exposure of Private Personal Information to an Unauthorized Actor in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-2239
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository microweber/microweber prior to 1.3.4. • https://github.com/microweber/microweber/commit/b0644cb3411b36b6ccc2ff7cdf7af3fa49525baa https://huntr.dev/bounties/edeff16b-fc71-4e26-8d2d-dfe7bb5e7868 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2240 – Improper Privilege Management in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-2240
Improper Privilege Management in GitHub repository microweber/microweber prior to 1.3.4. • https://github.com/microweber/microweber/commit/f43d5b767ad5814fc5f84bbaf0b77996262f3a4b https://huntr.dev/bounties/8f595559-7b4b-4b00-954c-7a627766e203 • CWE-269: Improper Privilege Management •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2014 – Cross-site Scripting (XSS) - Generic in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-2014
Cross-site Scripting (XSS) - Generic in GitHub repository microweber/microweber prior to 1.3.3. • https://github.com/microweber/microweber/commit/1a9b904722b35b00653c6ae72dca2969149159b3 https://huntr.dev/bounties/a77bf7ed-6b61-452e-b5ee-e20017e28d1a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-1877 – Command Injection in microweber/microweber
https://notcve.org/view.php?id=CVE-2023-1877
Command Injection in GitHub repository microweber/microweber prior to 1.3.3. • https://github.com/microweber/microweber/commit/93a906d0bf096c3ab1674012a90c88d101e76c8d https://huntr.dev/bounties/71fe4b3b-20ac-448c-8191-7b99d7ffaf55 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •