Vulnerability Database
Blog
FAQ
Docs
GHSA-3x96-m42v-hvh5
Source
https://github.com/advisories/GHSA-3x96-m42v-hvh5
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-3x96-m42v-hvh5/GHSA-3x96-m42v-hvh5.json
Aliases
CVE-2022-2174
Published
2022-06-23T00:00:35Z
Modified
2023-11-08T04:08:10.391473Z
Details
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.2.18.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-2174
https://github.com/microweber/microweber/commit/c51285f791e48e536111cd57a9544ccbf7f33961
https://github.com/microweber/microweber
https://huntr.dev/bounties/ac68e3fc-8cf1-4a62-90ee-95c4b2bad607
Affected packages
Packagist
/
microweber/microweber
Package
Name
microweber/microweber
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
The exact introduced commit is unknown
Fixed
1.2.18
Affected versions
0.*
0.9.346
0.93
0.931
0.934
0.951
1.*
1.0.3
1.0.4
1.0.5
1.0.6
1.0.7
1.1
v1.*
v1.2.3
v1.2.4
v1.2.5
v1.2.6
v1.2.7
v1.2.8
v1.2.9
v1.2.10
v1.2.11
v1.2.12
v1.2.13
v1.2.14
v1.2.15
v1.2.16
v1.2.17
GHSA-3x96-m42v-hvh5 - OSV