CVE-2024-41380

Name of the Vulnerable Software and Affected Versions microweber version 2.0.16

Description The issue is related to a Cross Site Scripting (XSS) vulnerability. It affects the add tagging tagged.php file located in the userfilesmodulestags directory. This vulnerability can be exploited via this specific file.

Recommendations For microweber version 2.0.16, consider restricting access to the add tagging tagged.php file until a fix is available. As a temporary workaround, avoid using the userfilesmodulestags module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.