Security Advisory
CVE-2025-60954
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Microweber CMS 2.0 has Weak Password Requirements. The application does not enforce minimum password length or complexity during password resets. Users can set extremely weak passwords, including single-character passwords, which can lead to account compromise, including administrative accounts.