Microweber Cross-site Scripting vulnerability
Moderate severity
GitHub Reviewed
Published
Jun 7, 2023
to the GitHub Advisory Database
•
Updated Nov 11, 2023
Description
Published by the National Vulnerability Database
Jun 7, 2023
Published to the GitHub Advisory Database
Jun 7, 2023
Reviewed
Jun 9, 2023
Last updated
Nov 11, 2023
Microweber 1.3.4 and prior is vulnerable to stored cross-site scripting via an alert on the
Editing
page. This issue is fixed in commit 42efa981a2239d042d910069952d6276497bdcf1.References