ГлавнаяУязвимости → CVE-2025-51503
7.6высокая

CVE-2025-51503

Описание

A Stored Cross-Site Scripting (XSS) vulnerability in Microweber CMS 2.0 allows attackers to inject malicious scripts into user profile fields, leading to arbitrary JavaScript execution in admin browsers.

Затрагиваемое ПО
Microweber Microweber
CVSS
Балл7.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Источники
https://github.com/progprnv/CVE-Reportshttps://github.com/progprnv/CVE-Reports/blob/main/CVE-2025-51503https://github.com/progprnv/CVE-Reports/blob/main/MICROWEBER%20%5BAdmin%20Panel%5D%20Stored%20XSS%20in%20profile%20path.md