2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Bitweaver 2.0.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 users/register.php or 2 search/index.php, or an editcomments action in 3 wiki/index.php or 4 forums/index.php. NOTE: the error...
CVE-2006-3103
Cross-site scripting XSS vulnerability in Bitweaver 1.3 allows remote attackers to inject arbitrary web script or HTML via the 1 error parameter in users/login.php and the 2 feedback parameter in articles/index.php...