First published: Tue Mar 15 2022(Updated: )
The microweber application allows large characters to insert in the input field "post title" which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request. in GitHub repository microweber/microweber prior to 1.2.12.
Credit: security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Microweber Microweber | <1.2.12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-0961.
The severity of CVE-2022-0961 is high.
CVE-2022-0961 allows large characters to be inserted in the input field "post title" in the microweber application, which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
The microweber application prior to version 1.2.12 is affected by CVE-2022-0961.
To fix CVE-2022-0961, upgrade to version 1.2.12 or later of the microweber application.