microweber/microweber vulnerabilities

New generation CMS with drag and drop

Direct Vulnerabilities

Known vulnerabilities in the microweber/microweber package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

<1.2.21
  • M
Cross-site Scripting (XSS)

<1.2.21
  • H
Insufficient Session Expiration

>=0.0.0
  • M
Insufficient Session Expiration

>=0.0.0
  • M
Information Exposure

>=0.0.0
  • M
Brute Force

<1.3.0
  • M
Cross-site Scripting (XSS)

<1.2.20
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Open Redirect

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Denial of Service (DoS)

<1.2.12
  • M
Cross-site Scripting (XSS)

<1.2.11
  • M
Integer Overflow or Wraparound

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Integer Overflow or Wraparound

>=0.0.0
  • L
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • H
Arbitrary Code Execution

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • C
Integer Overflow or Wraparound

>=0.0.0
  • M
HTML Code Injection

>=0.0.0
  • M
Improper Input Validation

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • H
Insecure Storage of Sensitive Information

>=0.0.0
  • H
Cross-site Scripting (XSS)

>=0.0.0
  • M
Business Logic Errors

<1.2.11
  • M
Cross-site Scripting (XSS)

<1.2.11
  • M
Cross-site Scripting (XSS)

<1.2.11
  • M
Information Exposure

<1.2.11
  • H
Information Exposure

<1.2.11
  • L
Cross-site Request Forgery (CSRF)

>=0.0.0
  • M
Open Redirect

>=0.0.0
  • M
Open Redirect

>=0.0.0
  • H
Command Injection

>=0.0.0
  • H
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Information Exposure

>=0.0.0
  • M
Cross-site Request Forgery (CSRF)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • M
Cross-site Scripting (XSS)

>=0.0.0
  • H
Cross-site Scripting (XSS)

>=0.0.0
  • M
Access Restriction Bypass

>=0.0.0
  • M
HTML Injection

>=0.0.0
  • H
Information Exposure

>=0.0.0
  • M
Cross-site Scripting (XSS)

<1.2.8
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)

<1.2.0.x-dev
  • H
Information Disclosure

<1.1.20
  • C
Arbitrary File Upload

<1.2.3
  • M
Cross-site Scripting (XSS)

<1.1
  • M
Cross-site Scripting (XSS)

<1.1
  • H
Cross-site Request Forgery (CSRF)

<1.1