Microweber CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (115 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2013-5984	1 Microweber	1 Microweber	2025-04-12	N/A
Directory traversal vulnerability in userfiles/modules/admin/backup/delete.php in Microweber before 0.830 allows remote attackers to delete arbitrary files via a .. (dot dot) in the file parameter.
CVE-2014-9464	1 Microweber	1 Microweber	2025-04-12	N/A
SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.
CVE-2022-4732	1 Microweber	1 Microweber	2025-04-10	7.2 High
Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.3.2.
CVE-2022-4647	1 Microweber	1 Microweber	2025-04-09	6.1 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3.2.
CVE-2023-0608	1 Microweber	1 Microweber	2025-03-26	5.4 Medium
Cross-site Scripting (XSS) - DOM in GitHub repository microweber/microweber prior to 1.3.2.
CVE-2024-40101	1 Microweber	1 Microweber	2025-03-25	7.2 High
A Reflected Cross-site scripting (XSS) vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter.
CVE-2021-32856	1 Microweber	1 Microweber	2025-03-10	6.1 Medium
Microweber is a drag and drop website builder and content management system. Versions 1.2.12 and prior are vulnerable to copy-paste cross-site scripting (XSS). For this particular type of XSS, the victim needs to be fooled into copying a malicious payload into the text editor. A fix was attempted in versions 1.2.9 and 1.2.12, but it is incomplete.
CVE-2023-1877	1 Microweber	1 Microweber	2025-02-10	9.8 Critical
Command Injection in GitHub repository microweber/microweber prior to 1.3.3.
CVE-2023-1881	1 Microweber	1 Microweber	2025-02-10	5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3.3.
CVE-2023-2014	1 Microweber	1 Microweber	2025-02-06	4.8 Medium
Cross-site Scripting (XSS) - Generic in GitHub repository microweber/microweber prior to 1.3.3.
CVE-2023-2239	1 Microweber	1 Microweber	2025-02-04	6.5 Medium
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository microweber/microweber prior to 1.3.4.
CVE-2023-2240	1 Microweber	1 Microweber	2025-02-04	8.8 High
Improper Privilege Management in GitHub repository microweber/microweber prior to 1.3.4.
CVE-2023-3142	1 Microweber	1 Microweber	2025-01-06	5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-6832	1 Microweber	1 Microweber	2024-11-27	4.3 Medium
Business Logic Errors in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-6599	1 Microweber	1 Microweber	2024-11-21	4.3 Medium
Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-6566	1 Microweber	1 Microweber	2024-11-21	6.5 Medium
Business Logic Errors in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-5976	1 Microweber	1 Microweber	2024-11-21	4.3 Medium
Improper Access Control in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-5861	1 Microweber	1 Microweber	2024-11-21	4.8 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-5318	1 Microweber	1 Microweber	2024-11-21	7.5 High
Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0.
CVE-2023-5244	1 Microweber	1 Microweber	2024-11-21	6.1 Medium
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 2.0.

« first previous Page 2 of 6. next last »