microweber is vulnerable to information disclosure. Sensitive information are leaked via a 500 error message when a user enters anything in search= parameter as in https://demo.microweber.org/demo/admin/view:modules/load_module:comments#search=
.
CPE | Name | Operator | Version |
---|---|---|---|
microweber/microweber | eq | v1.2.10 | |
microweber/microweber | le | 1.2.11.x-dev |