Vulnerabilities > Bitweaver > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-24 | CVE-2021-29025 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/my_images.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29026 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/permissions.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29027 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/index.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29028 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/user_activity.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29029 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/edit_personal_page.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29030 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/index.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29031 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/users_import.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29032 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/preferences.php URI. | 3.5 |
| 2021-03-24 | CVE-2021-29033 | Cross-site Scripting vulnerability in Bitweaver 3.1.0 A cross-site scripting (XSS) vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/edit_group.php URI. | 3.5 |
| 2006-04-12 | CVE-2006-1745 | Cross-Site Scripting vulnerability in Bitweaver 1.3 Cross-site scripting (XSS) vulnerability in login.php in Bitweaver 1.3 allows remote attackers to inject arbitrary web script or HTML via the error parameter. | 2.6 |