Lucene search
K

311 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.9 views

Bitweaver 1.3.1 Articles and Blogs Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/22169/info Bitweaver is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

bitweaver 1.x newsletters/edition.php tk Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20988/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input. These issues include multiple HTML-injection issues and multiple...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

Bitweaver 1.x/2.0 users/register.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/26801/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input including multiple cross-site scripting vulnerabilities, multiple...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Bitweaver 1.1.1 my.php sort_mode Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Bitweaver 1.1.1 message_box.php sort_mode Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

bitweaver 2.8.1 Persistent XSS Vulnerability

No description provided by source. exploit title: persistant xss in bitweaver2.8.1 date: 22.o2.2o11 author: lemlajt software : bitweaver @ sourceforge.net version: 2.8.1 tested on: linux cve : PoC : 1. submit an article POST http://localhost/www/cmsadmins/bitweaver2.8.1/bitweaver/articles/edit.ph...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Bitweaver 1.1.1 beta list_galleries.php sort_mode Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Bitweaver 1.1/1.2 Title Field HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16973/info The bitweaver application is prone to an HTML-injection vulnerability. The application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

bitweaver 2.8.0 - Multiple Vulnerabilities

No description provided by source. exploit title: Path Disclosure bitweaver 2.8 date: 25.o2.2o11 author: lemlajt software : bitweaver version: 2.8 tested on: linux cve : Path Disclosure bitweaver 2.8 PoC : http://localhost/www/cmsadmins/bitweaver2.8.1/bitweaver/kernel/admin/index.php?page=%27 sql...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Bitweaver <= 2.6 saveFeed() Remote Code Execution Exploit

No description provided by source. ?php / Bitweaver = 2.6 /boards/boardsrss.php / saveFeed remote code execution exploit by Nine:Situations:Group::bookoo php.ini independent site: http://retrogod.altervista.org/ software site: http://www.bitweaver.org/ You need an user account and you need to...

7.1AI score
Exploits0
NVD
NVD
added 2014/01/28 12:55 a.m.17 views

CVE-2012-5192

Directory traversal vulnerability in gmap/viewoverlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" dot dot encoded slash sequences in the overlaytype parameter...

5CVSS6.6AI score0.52477EPSS
Exploits9References1
Prion
Prion
added 2014/01/28 12:55 a.m.13 views

Directory traversal

Directory traversal vulnerability in gmap/viewoverlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" dot dot encoded slash sequences in the overlaytype parameter...

5CVSS7.1AI score0.52477EPSS
Exploits9References1Affected Software1
Cvelist
Cvelist
added 2014/01/28 12:0 a.m.21 views

CVE-2012-5192

Directory traversal vulnerability in gmap/viewoverlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" dot dot encoded slash sequences in the overlaytype parameter...

6.2AI score0.52477EPSS
Exploits9References1
CVE
CVE
added 2014/01/28 12:0 a.m.142 views

CVE-2012-5192

Bitweaver CVE-2012-5192 is a directory traversal vulnerability affecting Bitweaver 2.8.1 and earlier in gmap/view_overlay.php via the overlay_type parameter. The input can be crafted with dot-dot encoded slash sequences (''%2F) to bypass checks and read arbitrary files outside the web root. Impac...

5CVSS6.1AI score0.52477EPSS
Exploits9References1Affected Software1
Check Point Advisories
Check Point Advisories
added 2013/06/30 12:0 a.m.5 views

Bitweaver overlay_type Directory Traversal (CVE-2012-5192)

A directory traversal vulnerability has been reported in Bitweaver...

6.4AI score0.52477EPSS
Exploits9
Dsquare
Dsquare
added 2012/12/07 12:0 a.m.66 views

Bitweaver 2.8.1 LFI

Local file include vulnerability in Bitweaver overlaytype parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

5CVSS0.2AI score0.52477EPSS
Exploits9References2
Metasploit
Metasploit
added 2012/11/02 7:20 p.m.19 views

Bitweaver overlay_type Directory Traversal

This module exploits a directory traversal vulnerability found in Bitweaver. When handling the 'overlaytype' parameter, viewoverlay.php fails to do any path checking/filtering, which can be abused to read any file outside the virtual directory. This module requires Metasploit:...

5CVSS6.1AI score0.52477EPSS
Exploits9
OpenVAS
OpenVAS
added 2012/10/26 12:0 a.m.20 views

Bitweaver Multiple Cross Site Scripting and Local File Include Vulnerabilities

Bitweaver is prone to multiple cross-site scripting vulnerabilities and a local file include vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

6.1CVSS6AI score0.52477EPSS
Exploits10References1
Packet Storm
Packet Storm
added 2012/10/25 12:0 a.m.56 views

Bitweaver 2.8.1 Cross Site Scripting / Local File Inclusion

Trustwave SpiderLabs Security Advisory TWSL2012-016: Multiple Vulnerabilities in Bitweaver Published: 10/23/2012 Version: 1.0 Vendor: Bitweaver http://www.bitweaver.org/ Product: Bitweaver Version affected: 2.8.1 and earlier versions Product description: Bitweaver is a free and open source web...

5CVSS0.52477EPSS
Exploits10
exploitpack
exploitpack
added 2012/10/24 12:0 a.m.51 views

Bitweaver 2.8.1 - Multiple Vulnerabilities

Bitweaver 2.8.1 - Multiple Vulnerabilities Trustwave SpiderLabs Security Advisory TWSL2012-016: Multiple Vulnerabilities in Bitweaver Published: 10/23/2012 Version: 1.0 Vendor: Bitweaver http://www.bitweaver.org/ Product: Bitweaver Version affected: 2.8.1 and earlier versions Product description:...

5CVSS0.3AI score0.52477EPSS
Exploits10
Rows per page
Query Builder