CVE-2023-2014

Name of the Vulnerable Software and Affected Versions microweber/microweber versions prior to 1.3.3

Description The issue is related to Cross-site Scripting (XSS) - Generic, which occurs in the template selection while changing a group template. This allows for potential malicious script execution.

Recommendations For versions prior to 1.3.3, update to version 1.3.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the template selection feature to minimize the risk of exploitation.