[MEDIUM] Microweber has Reflected XSS Vulnerability in the id Parameter

PKSA-4smc-cjbc-nnyz CVE-2025-51501 GHSA-8357-fjvx-xrm8

Affected version: >=2.0.0,<=2.0.19

Reported by:
GitHub

[MEDIUM] Microweber has Reflected XSS Vulnerability in the layout Parameter

PKSA-khrd-2cvv-myms CVE-2025-51502 GHSA-mvj3-hc7j-vp74

Affected version: >=2.0.0,<=2.0.19

Reported by:
GitHub

[MEDIUM] Microweber XSS Vulnerability in the homepage Endpoint

PKSA-cd5c-j9yz-j2y1 CVE-2025-51504 GHSA-2x2j-3c2v-g3c2

Affected version: >=2.0.0,<=2.0.19

Reported by:
GitHub

[LOW] Microweber Has Stored XSS Vulnerability in User Profile Fields

PKSA-jf3z-3xjm-qj8r CVE-2025-51503 GHSA-782f-gxj5-xvqc

Affected version: >=2.0.0,<=2.0.19

Reported by:
GitHub

[LOW] Microweber vulnerable to XSS attack due to insure `group` component in its Settings handler

PKSA-tmxf-1h7s-6g36 CVE-2025-2214 GHSA-hcgh-r5gq-6qc2

Affected version: <=2.0.19

Reported by:
GitHub

[MEDIUM] Microweber Reflected Cross-site scripting (XSS) vulnerability

PKSA-vvcn-jnp6-qtmx CVE-2024-40101 GHSA-m99v-mmg2-66vf

Affected version: <2.0.16

Reported by:
GitHub

[MEDIUM] Microweber Cross Site Scripting (XSS) vulnerability

PKSA-7qgc-bw2s-qxrw CVE-2024-41380 GHSA-hf66-xfgj-42g8

Affected version: <=2.0.16

Reported by:
GitHub

[MEDIUM] Microweber Cross Site Scripting (XSS) vulnerability

PKSA-r8rz-gz7m-zpfc CVE-2024-41381 GHSA-h4xf-wx99-jmv4

Affected version: <=2.0.16

Reported by:
GitHub