Lucene search
Veracode Vulnerability DatabaseVERACODE:34312HistoryFeb 21, 2022 - 6:42 a.m.
Information Disclosure
2022-02-2106:42:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.006 Low
EPSS
Percentile
78.3%
microweber is vulnerable to information disclosure. Sensitive information are leaked via a 500 error message when a user enters anything in search= parameter as in https://demo.microweber.org/demo/admin/view:modules/load_module:comments#search= .
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | eq | v1.2.10 | |
| microweber/microweber | le | 1.2.11.x-dev |
Related
nuclei
nuclei
Microweber <1.2.11 - Information Disclosure
2022-08-03 10:54:02
cvelist
cvelist
github
github
Generation of Error Message Containing Sensitive Information in microweber
2022-02-19 00:01:36
huntr
huntr
in microweber/microweber
2022-02-13 09:39:18
prion
prion
Information disclosure
2022-02-18 11:15:00
osv
osv
CVE-2022-0660
2022-02-18 11:15:08
Generation of Error Message Containing Sensitive Information in microweber
2022-02-19 00:01:36
cve
cve
CVE-2022-0660
2022-02-18 11:15:08
nvd
nvd
CVE-2022-0660
2022-02-18 11:15:08