GHSA-2cv6-6437-39p2
GitHub Security Advisory
Cross-site Scripting in microweber
✓ GitHub Reviewed
HIGH
Has CVE
Advisory Details
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
Affected Packages
Packagist
microweber/microweber
Affected versions:
0
(fixed in 1.2.12)
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: July 3, 2025 6:26 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.