Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitweaver vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2007-6412
Direct static code injection vulnerability in wiki/index.php in Bitweaver 2.0.0 and previous versions, when comments are enabled, allows remote malicious users to inject arbitrary PHP code via an editcomments action.
Bitweaver Bitweaver
4.3
CVSSv2
CVE-2012-5193
Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 2.8.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the path info to (1) stats/index.php or (2) newsletters/edition.php or the (3) username parameter to users/remind_p...
Bitweaver Bitweaver
1 EDB exploit
3.5
CVSSv2
CVE-2021-29026
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/permissions.php URI.
Bitweaver Bitweaver 3.1.0
3.5
CVSSv2
CVE-2021-29027
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/index.php URI.
Bitweaver Bitweaver 3.1.0
3.5
CVSSv2
CVE-2021-29028
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/user_activity.php URI.
Bitweaver Bitweaver 3.1.0
3.5
CVSSv2
CVE-2021-29030
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/index.php URI.
Bitweaver Bitweaver 3.1.0
3.5
CVSSv2
CVE-2021-29031
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/users_import.php URI.
Bitweaver Bitweaver 3.1.0
3.5
CVSSv2
CVE-2021-29032
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/preferences.php URI.
Bitweaver Bitweaver 3.1.0
4.3
CVSSv2
CVE-2008-4337
Cross-site scripting (XSS) vulnerability in Bitweaver 2.0.2 allows remote malicious users to inject arbitrary web script or HTML via the URL parameter to (1) edit.php and (2) list.php in articles/; (3) list_blogs.php and (4) rankings.php in blogs/; (5) calendar/index.php; (6) cal...
Bitweaver Bitweaver 2.0.2
5.1
CVSSv2
CVE-2006-3102
Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remote malicious users to execute arbitrary PHP code by uploading arbitrary files with double extensions, which are stored for a small period of time under the webro...
Bitweaver Bitweaver 1.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »