Cross Site Scripting Vulnerability in Microweber by Microweber
CVE-2024-41381

Currently unrated

Key Information:

Vendor: Microweber
Status: Microweber
Vendor: CVE Published:; 5 August 2024

What is CVE-2024-41381?

Microweber version 2.0.16 is susceptible to a Cross Site Scripting (XSS) vulnerability located in userfiles/modules/settings/admin.php, allowing potential attackers to execute arbitrary scripts in the context of the user's browser.

References

https://github.com/microweber/microweber/issues/1110

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 5, 2024
Vulnerability Reserved
Jul 18, 2024