Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitweaver bitweaver vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2021-29032
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/preferences.php URI.
Bitweaver Bitweaver 3.1.0
4.8
CVSSv3
CVE-2021-29026
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/permissions.php URI.
Bitweaver Bitweaver 3.1.0
4.8
CVSSv3
CVE-2021-29031
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/users_import.php URI.
Bitweaver Bitweaver 3.1.0
4.8
CVSSv3
CVE-2021-29028
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/user_activity.php URI.
Bitweaver Bitweaver 3.1.0
4.8
CVSSv3
CVE-2021-29030
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/index.php URI.
Bitweaver Bitweaver 3.1.0
4.8
CVSSv3
CVE-2021-29033
A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote malicious users to inject JavaScript via the /users/admin/edit_group.php URI.
Bitweaver Bitweaver 3.1.0
NA
CVE-2007-6651
Directory traversal vulnerability in wiki/edit.php in Bitweaver R2 CMS allows remote malicious users to obtain sensitive information (script source code) via a .. (dot dot) in the suck_url parameter.
Bitweaver Bitweaver 2.0.0
1 EDB exploit
NA
CVE-2008-4337
Cross-site scripting (XSS) vulnerability in Bitweaver 2.0.2 allows remote malicious users to inject arbitrary web script or HTML via the URL parameter to (1) edit.php and (2) list.php in articles/; (3) list_blogs.php and (4) rankings.php in blogs/; (5) calendar/index.php; (6) cal...
Bitweaver Bitweaver 2.0.2
NA
CVE-2006-1745
Cross-site scripting (XSS) vulnerability in login.php in Bitweaver 1.3 allows remote malicious users to inject arbitrary web script or HTML via the error parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Bitweaver Bitweaver 1.3
1 EDB exploit
NA
CVE-2007-0526
Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 1.3.1 allow remote malicious users to inject arbitrary web script or HTML via the URL (PATH_INFO) to (1) articles/edit.php, (2) articles/list.php, (3) blogs/list_blogs.php, or (4) blogs/rankings.php.
Bitweaver Bitweaver 1.3.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »