We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-51501



Description

Reflected Cross-Site Scripting (XSS) in the id parameter of the live_edit.module_settings API endpoint in Microweber CMS2.0 allows execution of arbitrary JavaScript.

Reserved 2025-06-16 | Published 2025-08-01 | Updated 2025-08-01 | Assigner mitre

References

github.com/...[Admin Panel] Reflected XSS on id parameter.md

github.com/progprnv/CVE-Reports

github.com/progprnv/CVE-Reports/blob/main/CVE-2025-51501

cve.org (CVE-2025-51501)

nvd.nist.gov (CVE-2025-51501)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-51501

Support options

Helpdesk Chat, Email, Knowledgebase