microweber/microweber vulnerabilities

New generation CMS with drag and drop

Latest version: 1.1

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the microweber/microweber package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
<1.2.0.x-dev Not available 16 Feb, 2021
  • H
Information Disclosure
<1.1.20 Not available 17 Jul, 2020
  • H
Arbitrary File Upload
>=0.0.0 Not available 21 May, 2020
  • M
Cross-site Scripting (XSS)
>=0.0.0 Not available 17 Jan, 2019
  • M
Cross-site Scripting (XSS)
>=0.0.0 Not available 25 Dec, 2018
  • H
Cross-site Request Forgery (CSRF)
<1.1 Not available 16 Sep, 2018