CVE-2025-51502 Information

Aug 02, 2025 cve

Description

Reflected Cross-Site Scripting (XSS) in Microweber CMS 2.0 via the layout parameter on the /admin/page/create page allows arbitrary JavaScript execution in the context of authenticated admin users.

Reference

https://github.com/progprnv/CVE-Reports https://github.com/progprnv/CVE-Reports/blob/main/CVE-2025-51502 https://github.com/progprnv/CVE-Reports/blob/main/MICROWEBER%20%5BAdmin%20Panel%5D%20Reflected%20XSS%20on%20layout%20parameter.md

CNNVD-202508-061 (Published: 2025-08-01)

Share on:

CVE-2025-51502 Information

Description

Reference

Related CNNVD