Microweber CMS 漏洞列表

共找到 2 个与 Microweber CMS 相关的漏洞

📅 加载漏洞趋势中...

CVE-2025-51501: Microweber CMS2.0 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: Microweber CMS2.0

Reflected Cross-Site Scripting (XSS) in the `id` parameter of the `live_edit.module_settings` API endpoint in Microweber CMS2.0 allows execution of arbitrary JavaScript.
CVE-2025-51502: Microweber CMS 2.0 - Reflected XSS in Admin Page Creation POC

日期: 2025-08-01 | 影响软件: Microweber CMS

Reflected Cross-Site Scripting (XSS) exists in Microweber CMS 2.0 through the layout parameter on the /admin/page/create page. It allows arbitrary JavaScript to execute in the context of authenticated admin users.