Bozhidar Slaveykov

37 exploits Active since Jan 2022
CVE-2022-0277 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - Privilege Escalation
Incorrect Permission Assignment for Critical Resource in Packagist microweber/microweber prior to 1.2.11.
CVSS 6.5
CVE-2022-0278 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVSS 5.4
CVE-2022-0281 WRITEUP HIGH WRITEUP
Packagist microweber/microweber <1.2.11 - Info Disclosure
Exposure of Sensitive Information to an Unauthorized Actor in Packagist microweber/microweber prior to 1.2.11.
CVSS 7.5
CVE-2022-0282 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting in Packagist microweber/microweber prior to 1.2.11.
CVSS 4.3
CVE-2022-0378 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVSS 5.4
CVE-2022-0379 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVSS 5.4
CVE-2022-0504 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - Info Disclosure
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
CVSS 6.5
CVE-2022-0505 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - CSRF
Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11.
CVSS 6.5
CVE-2022-0506 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVSS 5.4
CVE-2022-0558 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVSS 5.4
CVE-2022-0560 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - Open Redirect
Open Redirect in Packagist microweber/microweber prior to 1.2.11.
CVSS 6.1
CVE-2022-0596 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - Info Disclosure
Improper Validation of Specified Quantity in Input in Packagist microweber/microweber prior to 1.2.11.
CVSS 4.3
CVE-2022-0638 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - CSRF
Cross-Site Request Forgery (CSRF) in Packagist microweber/microweber prior to 1.2.11.
CVSS 4.3
CVE-2022-0660 WRITEUP HIGH WRITEUP
Packagist microweber/microweber <1.2.11 - Info Disclosure
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
CVSS 7.5
CVE-2022-0678 WRITEUP MEDIUM WRITEUP
Packagist microweber/microweber <1.2.11 - XSS
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVSS 6.1
CVE-2022-0719 WRITEUP MEDIUM WRITEUP
microweber/microweber <1.3 - XSS
Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3.
CVSS 5.4
CVE-2022-0721 WRITEUP MEDIUM WRITEUP
microweber/microweber <1.3 - Info Disclosure
Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3.
CVSS 6.5
CVE-2022-0724 WRITEUP MEDIUM WRITEUP
microweber/microweber <1.3 - Info Disclosure
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3.
CVSS 6.5
CVE-2022-0762 WRITEUP MEDIUM WRITEUP
microweber/microweber <1.3 - Info Disclosure
Incorrect Authorization in GitHub repository microweber/microweber prior to 1.3.
CVSS 5.5
CVE-2022-0763 WRITEUP MEDIUM WRITEUP
microweber/microweber <1.3 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3.
CVSS 4.8
CVE-2022-0777 WRITEUP HIGH WRITEUP
microweber/microweber <1.3 - Info Disclosure
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3.
CVSS 7.5
CVE-2022-0895 WRITEUP CRITICAL WRITEUP
microweber/microweber <1.3 - Code Injection
Static Code Injection in GitHub repository microweber/microweber prior to 1.3.
CVSS 9.8
CVE-2022-0896 WRITEUP HIGH WRITEUP
microweber/microweber <1.3 - Info Disclosure
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository microweber/microweber prior to 1.3.
CVSS 8.8
CVE-2022-0912 WRITEUP MEDIUM WRITEUP
Microweber < 1.2.11 - Unrestricted File Upload
Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.2.11.
CVSS 4.8
CVE-2022-0913 WRITEUP HIGH WRITEUP
Microweber < 1.2.11 - Integer Overflow
Integer Overflow or Wraparound in GitHub repository microweber/microweber prior to 1.3.
CVSS 7.5