header-logo
Suggest Exploit
vendor:
bitweaver
by:
Unknown
N/A
CVSS
N/A
Input Validation
Unknown
CWE
Product Name: bitweaver
Affected Version From: 1.1.1 beta
Affected Version To: 1.1.1 beta
Patch Exists: Unknown
Related CWE:
CPE: Unknown
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Multiple Input Validation Vulnerabilities in bitweaver

bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/15962/info

bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.

Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.

bitweaver 1.1.1 beta and prior are vulnerable; other versions may also be affected. 

http://www.example.com/fisheye/list_galleries.php?sort_mode=[SQL]