Security Advisory

CVE-2025-60954

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-24 00:00:00
Last updated 2025-10-24 20:40:52
Assigner mitre
State PUBLISHED

Description

Microweber CMS 2.0 has Weak Password Requirements. The application does not enforce minimum password length or complexity during password resets. Users can set extremely weak passwords, including single-character passwords, which can lead to account compromise, including administrative accounts.