WS-2022-0273 | Mend Vulnerability Database

Vulnerability DatabaseWS-2022-0273

WS-2022-0273

Published:May 15, 2026

Updated:May 15, 2026

Cross-site Scripting (XSS) - Stored on Translations in microweber/microweber

Affected Packages

microweber/microweber (PHP):

Affected version(s) =dev-backup_new_functions <dev-build

Fix Suggestion:

Update to version dev-build

microweber/microweber (PHP):

Affected version(s) =dev-inline-spacings-replace <dev-jenkins_modules_test

Fix Suggestion:

Update to version dev-jenkins_modules_test

microweber/microweber (PHP):

Affected version(s) =dev-revert-797-master

Fix Suggestion:

Update to version no_fix

microweber/microweber (PHP):

Affected version(s) =dev-optimization1 <dev-test1

Fix Suggestion:

Update to version dev-test1

microweber/microweber (PHP):

Affected version(s) =dev-optimization <dev-pm-dev

Fix Suggestion:

Update to version dev-pm-dev

microweber/microweber (PHP):

Affected version(s) =dev-handles-2 <dev-le2

Fix Suggestion:

Update to version dev-le2

microweber/microweber (PHP):

Affected version(s) =dev-Radanovn-patch-1 <dev-contact_form_fix_sr-1

Fix Suggestion:

Update to version dev-contact_form_fix_sr-1

microweber/microweber (PHP):

Affected version(s) =dev-master <dev-media_library_unsplash_update

Fix Suggestion:

Update to version dev-media_library_unsplash_update

microweber/microweber (PHP):

Affected version(s) =dev-1.2-dev <1.2.x-dev

Fix Suggestion:

Update to version 1.2.x-dev

microweber/microweber (PHP):

Affected version(s) =dev-new-source-editor <dev-newsletter_module

Fix Suggestion:

Update to version dev-newsletter_module

microweber/microweber (PHP):

Affected version(s) =dev-checkout_v2 <dev-fix_backup_encoding_v2

Fix Suggestion:

Update to version dev-fix_backup_encoding_v2

microweber/microweber (PHP):

Affected version(s) =dev-theme_content_export <dev-tinymce

Fix Suggestion:

Update to version dev-tinymce

microweber/microweber (PHP):

Affected version(s) =dev-account-manager <dev-add_custom_data_on_product

Fix Suggestion:

Update to version dev-add_custom_data_on_product

microweber/microweber (PHP):

Affected version(s) =dev-webpack2 <dev-wordpress_import_backup_v2

Fix Suggestion:

Update to version dev-wordpress_import_backup_v2

microweber/microweber (PHP):

Affected version(s) >=dev-slow_backup_fix <dev-test_module

Fix Suggestion:

Update to version dev-test_module

microweber/microweber (PHP):

Affected version(s) =dev-dev <dev-filament

Fix Suggestion:

Update to version dev-filament

microweber/microweber (PHP):

Affected version(s) =dev-10_1_2021 <dev-laravel-11

Fix Suggestion:

Update to version dev-laravel-11

Related Resources (1)

https://github.com/microweber/microweber/commit/265ff4c9686b980b76fda48a4cabee942b831bf6

Do you need more information?

CVSS v4

Base Score:

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

PASSIVE

Vulnerable System Confidentiality

LOW

Vulnerable System Integrity

LOW

Vulnerable System Availability

NONE

Subsequent System Confidentiality

LOW

Subsequent System Integrity

LOW

Subsequent System Availability

NONE

CVSS v3

Base Score:

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE