CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0777 – Weak Password Recovery Mechanism for Forgotten Password in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0777
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3. Un Mecanismo de Recuperación de Contraseñas Débil para el Olvido de Contraseñas en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3. • https://github.com/microweber/microweber/commit/a3944cf9d1d8c41a48297ddc98302934e2511b0f https://huntr.dev/bounties/b36be8cd-544f-42bd-990d-aa1a46df44d7 • CWE-640: Weak Password Recovery Mechanism for Forgotten Password •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0763 – Cross-site Scripting (XSS) - Stored in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0763
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3. • https://github.com/microweber/microweber/commit/c897d0dc159849763a813184d9b75b966c6360bf https://huntr.dev/bounties/6de9c621-740d-4d7a-9d77-d90c6c87f3b6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0762 – Incorrect Authorization in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0762
Incorrect Authorization in GitHub repository microweber/microweber prior to 1.3. Unos Errores de Lógica Empresarial en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3. • https://github.com/microweber/microweber/commit/76361264d9fdfff38a1af79c63141455cc4d36e3 https://huntr.dev/bounties/125b5244-5099-485e-bf75-e5f1ed80dd48 • CWE-863: Incorrect Authorization •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0724 – Insecure Storage of Sensitive Information in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0724
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3. Un Almacenamiento no Seguro de Información Confidencial en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3 • https://github.com/microweber/microweber/commit/b592c86d2b927c0cae5b73b87fb541f25e777aa3 https://huntr.dev/bounties/0cdc4a29-dada-4264-b326-8b65b4f11062 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0721 – Insertion of Sensitive Information Into Debugging Code in microweber/microweber
https://notcve.org/view.php?id=CVE-2022-0721
Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3. Una Inserción de Información Confidencial en el Código de Depuración en el repositorio de GitHub microweber/microweber versiones anteriores a 1.3 • https://github.com/microweber/microweber/commit/b12e1a490c79460bff019f34b2e17112249b16ec https://huntr.dev/bounties/ae267d39-9750-4c69-be8b-4f915da089fb • CWE-215: Insertion of Sensitive Information Into Debugging Code •