CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

311 matches found

CNNVD•added 2021/03/24 12:0 a.m.•4 views

Bitweaver 跨站脚本漏洞

Bitweaver is a free, open source web application framework and content management system. A cross-site scripting vulnerability exists in Bitweaver 3.1.0. A remote attacker can exploit this vulnerability to inject JavaScript via the /users/admin/permissions.php URI...

4.8CVSS5AI score0.00786EPSS

Exploits1References2

CNNVD•added 2021/03/24 12:0 a.m.•3 views

Bitweaver 跨站脚本漏洞

4.8CVSS5AI score0.00786EPSS

Exploits1References2

CNNVD•added 2021/03/24 12:0 a.m.•3 views

Bitweaver 跨站脚本漏洞

4.8CVSS5AI score0.00786EPSS

Exploits1References2

CNNVD•added 2021/03/24 12:0 a.m.•3 views

Bitweaver 跨站脚本漏洞

4.8CVSS5AI score0.00786EPSS

Exploits1References1

NVD•added 2019/11/13 9:15 p.m.•11 views

CVE-2012-5193

Multiple cross-site scripting XSS vulnerabilities in Bitweaver 2.8.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the path info to 1 stats/index.php or 2 newsletters/edition.php or the 3 username parameter to users/remindpassword.php, 4 days parameter to...

6.1CVSS6.1AI score0.01793EPSS

Exploits6References2

Prion•added 2019/11/13 9:15 p.m.•10 views

Cross site scripting

4.3CVSS6.1AI score0.01793EPSS

Exploits6References2Affected Software1

Cvelist•added 2019/11/13 8:31 p.m.•14 views

CVE-2012-5193

6.1AI score0.01793EPSS

Exploits6References2

CVE•added 2019/11/13 8:31 p.m.•45 views

CVE-2012-5193

Bitweaver 2.8.1 and earlier versions are affected by multiple cross-site scripting (XSS) vulnerabilities (CVE-2012-5193). Attackers can inject arbitrary web script or HTML by manipulating path info or specific parameters: stats/index.php (path info, days), newsletters/edition.php, users/remind_pa...

6.1CVSS6AI score0.01793EPSS

Exploits6References2Affected Software1

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Bitweaver 1.x fisheye/index.php sort_mode Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20996/info Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Bitweaver 1.1.1 view_post.php post_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Bitweaver 1.x/2.0 search/index.php highlight Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/26801/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input including multiple cross-site scripting vulnerabilities, multiple...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Bitweaver 1.1.1 my.php sort_mode Parameter XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•18 views

Bitweaver 1.x blogs/list_blogs.php sort_mode Parameter SQL Injection

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•53 views

bitweaver 2.8.1 - Multiple Vulnerabilities

No description provided by source. Trustwave SpiderLabs Security Advisory TWSL2012-016: Multiple Vulnerabilities in Bitweaver Published: 10/23/2012 Version: 1.0 Vendor: Bitweaver http://www.bitweaver.org/ Product: Bitweaver Version affected: 2.8.1 and earlier versions Product description: Bitweav...

5CVSS6.2AI score0.52477EPSS

Exploits10

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Bitweaver <= 2.6 saveFeed() Remote Code Execution Exploit

No description provided by source. ?php / Bitweaver = 2.6 /boards/boardsrss.php / saveFeed remote code execution exploit by Nine:Situations:Group::bookoo php.ini independent site: http://retrogod.altervista.org/ software site: http://www.bitweaver.org/ You need an user account and you need to...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Bitweaver 1.x/2.0 users/register.php URL XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•24 views

Bitweaver 1.x/2.0 search/index.php URL XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Bitweaver CMS 1.3 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/17406/info Bitweaver CMS is prone to multiple cross-site scripting vulnerabilities. Thess issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•14 views

bitweaver 1.x newsletters/edition.php tk Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20988/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input. These issues include multiple HTML-injection issues and multiple...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Bitweaver 1.x fisheye/list_galleries.php sort_mode Parameter SQL Injection

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by