Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
Product: Microweber
Product Version: 1.1.18
Vulnerability: Unrestricted File upload
An Unrestricted File Upload Vulnerability in the Microweber version 1.1.18 allows remote attackers to upload any extensions like php, exe in the profile upload section.
Attack Type: Local
An attacker with the ability to upload a malicious file to the application can set up drive-by-download attacks, deface the website, or gain access to the file system through a web shell.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment