Filtered by vendor Microweber
Subscriptions
Filtered by product Cms
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-51502 | 1 Microweber | 1 Cms | 2025-08-12 | 6.1 Medium |
| Reflected Cross-Site Scripting (XSS) in Microweber CMS 2.0 via the layout parameter on the /admin/page/create page allows arbitrary JavaScript execution in the context of authenticated admin users. | ||||
| CVE-2025-51504 | 1 Microweber | 1 Cms | 2025-08-12 | 7.6 High |
| Microweber CMS 2.0 is vulnerable to Cross Site Scripting (XSS)in the /projects/profile, homepage endpoint via the last name field. | ||||
| CVE-2025-51503 | 1 Microweber | 2 Cms, Microweber | 2025-08-06 | 7.6 High |
| A Stored Cross-Site Scripting (XSS) vulnerability in Microweber CMS 2.0 allows attackers to inject malicious scripts into user profile fields, leading to arbitrary JavaScript execution in admin browsers. | ||||
Page 1 of 1.