CVE-2023-5244: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

September 28, 2023

Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 2.0.

References

github.com/advisories/GHSA-rgf9-j7gv-rq22
github.com/microweber/microweber/commit/1cb846f8f54ff6f5c668f3ae64dd81740a7e8968
huntr.dev/bounties/a3bd58ba-ca59-4cba-85d1-799f73a76470
nvd.nist.gov/vuln/detail/CVE-2023-5244

Detect and mitigate CVE-2023-5244 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →