CVE-2023-5244

Name of the Vulnerable Software and Affected Versions microweber/microweber versions prior to 2.0

Description The issue is a Cross-site Scripting (XSS) - Reflected vulnerability in the GitHub repository microweber/microweber. This type of vulnerability allows an attacker to inject malicious scripts into a website, potentially leading to unauthorized access or control. A patch is available and is anticipated to be part of the 2.x branch.

Recommendations For versions prior to 2.0, update to version 2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the website to minimize the risk of exploitation. Avoid using potentially vulnerable API endpoints or parameters until the issue is resolved.