CVE-2025-51501 | Microweber CMS 2.0 API Endpoint live_edit.module_settings ID cross site scripting

Inserito da Angelo Barbosa | Ago 1, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Microweber CMS 2.0. This affects an unknown part of the file live_edit.module_settings of the component API Endpoint. The manipulation of the argument ID leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-51501. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-51501 | Microweber CMS 2.0 API Endpoint live_edit.module_settings ID cross site scripting

Post correlati

CVE-2025-24924 | GMOD Apollo up to 2.7.x missing authentication (icsa-25-063-07)

CVE-2024-53062 | Linux Kernel up to 6.11.7 mgb4_cmt.c frequency_range_store information disclosure (e0bc90742bbd/2aee207e5b3c)

CVE-2024-24812 | Frappe up to 14.58.x/15.4.x Portal Page cross site scripting (GHSA-7p3m-h76m-hg9v)

CVE-2021-47485 | Linux Kernel up to 5.14.15 qib qib_user_sdma_pkt buffer overflow