Headline
GHSA-jmwm-w2rm-prv9: Microweber Cross-site Scripting vulnerability
Microweber CMS prior to version 2.0.3 is vulnerable to stored Cross Site Scripting (XSS) via the profile picture file upload functionality.
Microweber Cross-site Scripting vulnerability
Moderate severity GitHub Reviewed Published Nov 8, 2023 to the GitHub Advisory Database • Updated Nov 8, 2023
Related news
CVE-2023-47379: Stored XSS Vulnerability in Microweber Version 2.0.1 - Astra
Microweber CMS version 2.0.1 is vulnerable to stored Cross Site Scripting (XSS) via the profile picture file upload functionality.