CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Cvelist•added 2014/01/28 12:0 a.m.•20 views

CVE-2012-5192

Directory traversal vulnerability in gmap/viewoverlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" dot dot encoded slash sequences in the overlaytype parameter...

6.2AI score0.52477EPSS

Exploits9References1

CVE•added 2014/01/28 12:0 a.m.•141 views

CVE-2012-5192

Bitweaver CVE-2012-5192 is a directory traversal vulnerability affecting Bitweaver 2.8.1 and earlier in gmap/view_overlay.php via the overlay_type parameter. The input can be crafted with dot-dot encoded slash sequences (''%2F) to bypass checks and read arbitrary files outside the web root. Impac...

5CVSS6.1AI score0.52477EPSS

Exploits9References1Affected Software1

Check Point Advisories•added 2013/06/30 12:0 a.m.•4 views

Bitweaver overlay_type Directory Traversal (CVE-2012-5192)

A directory traversal vulnerability has been reported in Bitweaver...

6.4AI score0.52477EPSS

Exploits9

Metasploit•added 2012/11/02 7:20 p.m.•19 views

Bitweaver overlay_type Directory Traversal

This module exploits a directory traversal vulnerability found in Bitweaver. When handling the 'overlaytype' parameter, viewoverlay.php fails to do any path checking/filtering, which can be abused to read any file outside the virtual directory. This module requires Metasploit:...

5CVSS6.1AI score0.52477EPSS

Exploits9

Packet Storm•added 2012/10/25 12:0 a.m.•53 views

Bitweaver 2.8.1 Cross Site Scripting / Local File Inclusion

Trustwave SpiderLabs Security Advisory TWSL2012-016: Multiple Vulnerabilities in Bitweaver Published: 10/23/2012 Version: 1.0 Vendor: Bitweaver http://www.bitweaver.org/ Product: Bitweaver Version affected: 2.8.1 and earlier versions Product description: Bitweaver is a free and open source web...

5CVSS0.52477EPSS

Exploits10

Exploit DB•added 2012/10/24 12:0 a.m.•56 views

Bitweaver 2.8.1 - Multiple Vulnerabilities

6.1CVSS6.2AI score0.52477EPSS

Exploits10

exploitpack•added 2012/10/24 12:0 a.m.•50 views

Bitweaver 2.8.1 - Multiple Vulnerabilities

Bitweaver 2.8.1 - Multiple Vulnerabilities Trustwave SpiderLabs Security Advisory TWSL2012-016: Multiple Vulnerabilities in Bitweaver Published: 10/23/2012 Version: 1.0 Vendor: Bitweaver http://www.bitweaver.org/ Product: Bitweaver Version affected: 2.8.1 and earlier versions Product description:...

5CVSS0.3AI score0.52477EPSS

Exploits10

Circl•added 2012/10/24 12:0 a.m.•6 views

CVE-2012-5192

creationtimestamp| type| source ---|---|--- 2012-10-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/22216 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/bitweaveroverlaytypetraversal.rb 2025-02-06...

5CVSS5.7AI score0.52477EPSS

Exploits9References2

0day.today•added 2012/10/23 12:0 a.m.•33 views

Bitweaver 2.8.1 Multiple Vulnerabilities

Finding 1: Local File Inclusion Vulnerability CVE: CVE-2012-5192 Finding 2: Multiple XSS Vulnerabilities in Bitweaver CVE: CVE-2012-5193 Trustwave SpiderLabs Security Advisory TWSL2012-016: Multiple Vulnerabilities in Bitweaver Published: 10/23/2012 Version: 1.0 Vendor: Bitweaver...

6.5AI score0.52477EPSS

Exploits10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by