CVE-2020-13405

Published
View on NVD ↗
CVSS v3
7.5
HIGH
CVSS v2
5
MEDIUM
Affected
1
PROJECT

Description

userfiles/modules/users/controller/controller.php in Microweber before 1.1.20 allows an unauthenticated user to disclose the users database via a /modules/ POST request.

microweber/microweber
microweber/microweber
Drag and Drop Website Builder and CMS with E-commerce
GitHubGitHub
3.42K