Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitweaver vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2012-5192
Directory traversal vulnerability in gmap/view_overlay.php in Bitweaver 2.8.1 and previous versions allows remote malicious users to read arbitrary files via "''%2F" (dot dot encoded slash) sequences in the overlay_type parameter.
Bitweaver Bitweaver 2.7
Bitweaver Bitweaver 2.6
Bitweaver Bitweaver 2.5
Bitweaver Bitweaver 2.0.2
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver
Bitweaver Bitweaver 2.0.0
Bitweaver Bitweaver 1.3
Bitweaver Bitweaver 1.1.1 Beta
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver 1.2.1
1 EDB exploit
755
VMScore
CVE-2009-1678
Directory traversal vulnerability in the saveFeed function in rss/feedcreator.class.php in Bitweaver 2.6 and previous versions allows remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in the version parameter to boards/boards_rss.php.
Bitweaver Bitweaver 2.0.0
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver 1.3
Bitweaver Bitweaver 1.2.1
Bitweaver Bitweaver
Bitweaver Bitweaver 1.1.1 Beta
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 2.5
Bitweaver Bitweaver 2.0.2
1 EDB exploit
655
VMScore
CVE-2009-1677
Multiple static code injection vulnerabilities in the saveFeed function in rss/feedcreator.class.php in Bitweaver 2.6 and previous versions allow (1) remote authenticated users to inject arbitrary PHP code into files by placing PHP sequences into the account's "display ...
Bitweaver Bitweaver 1.2.1
Bitweaver Bitweaver 1.1.1 Beta
Bitweaver Bitweaver
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 2.5
Bitweaver Bitweaver 2.0.2
Bitweaver Bitweaver 2.0.0
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver 1.3
1 EDB exploit
755
VMScore
CVE-2007-6375
Multiple SQL injection vulnerabilities in Bitweaver 2.0.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) sort_mode parameter to wiki/list_pages.php and the (2) highlight parameter to search/index.php. NOTE: the researcher also rep...
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver
Bitweaver Bitweaver 1.1.1 Beta
Bitweaver Bitweaver 1.2.1
Bitweaver Bitweaver 1.3
1 EDB exploit
520
VMScore
CVE-2006-6924
bitweaver 1.3.1 and previous versions allows remote malicious users to obtain sensitive information via a sort_mode=-98 query string to (1) blogs/list_blogs.php, (2) fisheye/index.php, (3) wiki/orphan_pages.php, or (4) wiki/list_pages.php, which forces a SQL error. NOTE: the fish...
Bitweaver Bitweaver 1.2.1
Bitweaver Bitweaver 1.3
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 1.1.1 Beta
4 EDB exploits
685
VMScore
CVE-2006-6925
Multiple cross-site scripting (XSS) vulnerabilities in bitweaver 1.3.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the message title field when submitting an article to articles/edit.php, (2) the message title field when submi...
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 1.1.1 Beta
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver 1.2.1
Bitweaver Bitweaver 1.3
1 EDB exploit
755
VMScore
CVE-2006-6923
SQL injection vulnerability in newsletters/edition.php in bitweaver 1.3.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the tk parameter.
Bitweaver Bitweaver 1.3.1
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 1.1.1 Beta
Bitweaver Bitweaver 1.2.1
1 EDB exploit
775
VMScore
CVE-2005-4380
Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote malicious users to execute arbitrary SQL commands via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) messages/message_box.php, and (c) users/my.php; the (2) post_id parameter t...
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 1.1.1 Beta
5 EDB exploits
445
VMScore
CVE-2010-5086
Directory traversal vulnerability in wiki/rankings.php in Bitweaver 2.7 and 2.8.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the style parameter.
Bitweaver Bitweaver 2.8.1
Bitweaver Bitweaver 2.7
435
VMScore
CVE-2012-5193
Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 2.8.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the path info to (1) stats/index.php or (2) newsletters/edition.php or the (3) username parameter to users/remind_p...
Bitweaver Bitweaver
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975
CVE-2024-2961
CVE-2024-20380
XML injection
HTML injection
CVE-2024-29204
CVE-2023-51795
memory leak
CVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »