|
Bitweaver 2.0.0 and Prior Multiple Input Validation Vulnerabilities
Attackers can use a browser to exploit these issues. To exploit a cross-site scripting vulnerability, an attacker must entice an unsuspecting user to follow a malicious URI. The following proof-of-concept URIs are available: http://www.example.com/users/register.php/XSS http://www.example.com/search/index.php/XSS http://www.example.com/users/login.php?error=XSS http://www.example.com/search/index.php?tk=316dccdfb62a3cad613e&highlight=[SQL_INJECTION]=&search=go |
|
|
Privacy Statement |
