CVE-2025-60954 – Microweber CMS Weak Password Requirements Vulnerability

CVE ID : CVE-2025-60954

Published : Oct. 24, 2025, 9:16 p.m. | 1 hour, 27 minutes ago

Description : Microweber CMS 2.0 has Weak Password Requirements. The application does not enforce minimum password length or complexity during password resets. Users can set extremely weak passwords, including single-character passwords, which can lead to account compromise, including administrative accounts.

Severity: 8.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…