CVE-2022-0929
published 2022-03-12CVE-2022-0929: XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.11.
PriorityP424medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
1.06%
60.4th percentile
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.11.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chrome_chrome | — | — | |
| microweber | microweber | < 1.2.11 | 1.2.11 |
| microweber | microweber | >= 0 < 1.2.12 | 1.2.12 |
| microweber | microweber_microweber | >= unspecified < 1.2.11 | 1.2.11 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv3.06.8MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Cross-site Scripting in microweber
ghsa·2022-03-13
CVE-2022-0929 [MEDIUM] CWE-79 Cross-site Scripting in microweber
Cross-site Scripting in microweber
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.12.
OSV
Cross-site Scripting in microweber
osv·2022-03-13
CVE-2022-0929 [MEDIUM] Cross-site Scripting in microweber
Cross-site Scripting in microweber
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.12.
Chrome
Stable Channel Desktop Update: CVE-2023-0929
vendor_chrome·2023-02-22·CVSS 8.8
CVE-2023-0929 [HIGH] Stable Channel Desktop Update: CVE-2023-0929
Stable Channel Desktop Update
CVE-2023-0929: Use after free in Vulkan. Reported by Cassidy Kim(@cassidy6564) on 2022-12-09 [$10000][ 1410766 ] High CVE-2023-0930: Heap buffer overflow in Video
Reported by Cassidy Kim(@cassidy6564) on 2023-01-27 [$3000][ 1407701 ] High CVE-2023-0931: Use after free in Video
Severity: high
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/microweber/microweber/commit/de6d17b52d261902653fbdd2ecefcaac82e54256https://huntr.dev/bounties/66abf7ec-2dd7-4cb7-87f5-e91375883f03https://github.com/microweber/microweber/commit/de6d17b52d261902653fbdd2ecefcaac82e54256https://huntr.dev/bounties/66abf7ec-2dd7-4cb7-87f5-e91375883f03
2022-03-12
Published