7 matches found
EUVD-2010-5050
Malware in sbrugna...
Directory traversal
Directory traversal vulnerability in gmap/viewoverlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" dot dot encoded slash sequences in the overlaytype parameter...
CVE-2012-5192
Bitweaver CVE-2012-5192 is a directory traversal vulnerability affecting Bitweaver 2.8.1 and earlier in gmap/view_overlay.php via the overlay_type parameter. The input can be crafted with dot-dot encoded slash sequences (''%2F) to bypass checks and read arbitrary files outside the web root. Impac...
Bitweaver 2.8.1 LFI
Local file include vulnerability in Bitweaver overlaytype parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Bitweaver 'rankings.php' Local File Include Vulnerability
Bitweaver is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Bitweaver 2.8.1 Cross Site Scripting
Advisory: Bitweaver 2.8.1 Multiple Cross-site Scripting Vulnerabilities Advisory ID: SSCHADV2011-021 Author: Stefan Schurtz Affected Software: Successfully tested on Bitweaver 2.8.1 Vendor URL: http://www.bitweaver.org Vendor Status: informed CVE-ID: - ========================== Vulnerability...
bitweaver 2.8.1 Persistant XSS / SQL Injection Vulnerability
Exploit for php platform in category web applications author: lemlajt software : bitweaver @ sourceforge.net version: 2.8.1 tested on: linux cve : PoC : 1. submit an article POST http://localhost/www/cmsadmins/bitweaver2.8.1/bitweaver/articles/edit.php form-data;...