CRLF Injection Vulnerability in Microweber CMS (Packagist microweber/microweber) prior to 1.2.11

CRLF Injection Vulnerability in Microweber CMS (Packagist microweber/microweber) prior to 1.2.11

CVE-2022-0666 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11.

Learn more about our Web App Pen Testing.