CVE-2024-41381

Name of the Vulnerable Software and Affected Versions microweber version 2.0.16

Description The issue is related to a Cross Site Scripting (XSS) vulnerability. It affects the admin.php file located in the userfilesmodulessettings directory.

Recommendations For microweber version 2.0.16, consider restricting access to the admin.php file in the userfilesmodulessettings directory until a fix is available. As a temporary workaround, avoid using the vulnerable admin.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.