Business Logic Errors in microweber/microweber
CVE-2023-6566

5.9MEDIUM

Key Information:

Vendor
microweber
Status
microweber/microweber
Vendor
CVE Published:
7 December 2023

Summary

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0.

Affected Version(s)

microweber/microweber < 2.0

References

https://huntr.com/bounties/cf4b68b5-8d97-4d05-9cde-e76b1a...
https://github.com/microweber/microweber/commit/eee0c6771...

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.