CVE-2023-5861

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Oct 31, 2023

Updated: Nov 8, 2023

CWE ID 79

Summary

CVE-2023-5861 is a Cross-Site Scripting (XSS) vulnerability that affected the microweber/microweber GitHub repository before version 2.0. Attackers could inject malicious scripts into web pages viewed by other users, potentially stealing sensitive information or taking control of user sessions. This stored XSS vulnerability posed a significant risk to users of the affected software, highlighting the importance of keeping software up-to-date with security patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microweber

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tNiAm9
https://www.cve.org/CVERecord?id=CVE-2023-5861
https://nvd.nist.gov/vuln/detail/CVE-2023-5861

Back to Vulnerability Database

CVE-2023-5861

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations