Vulnerabilities > CVE-2006-3103 - Unspecified vulnerability in Bitweaver 1.3

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
bitweaver
exploit available
NVD
Published: 2006-06-21
Updated: 2024-11-21

Summary

Cross-site scripting (XSS) vulnerability in Bitweaver 1.3 allows remote attackers to inject arbitrary web script or HTML via the (1) error parameter in users/login.php and the (2) feedback parameter in articles/index.php.

Vulnerable Configurations

Part Description Count
Application
Bitweaver
1

Exploit-Db

descriptionbitweaver <= 1.3 (tmpImagePath) Attachment mod_mime Exploit. CVE-2006-3102,CVE-2006-3103,CVE-2006-3104,CVE-2006-3105. Webapps exploit for php platform
fileexploits/php/webapps/1918.php
idEDB-ID:1918
last seen2016-01-31
modified2006-06-15
platformphp
port
published2006-06-15
reporterrgod
sourcehttps://www.exploit-db.com/download/1918/
titlebitweaver <= 1.3 tmpImagePath Attachment mod_mime Exploit
typewebapps

References