CVE-2005-4380
published 2005-12-20CVE-2005-4380: Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to execute arbitrary SQL commands via the (1) sort_mode parameter…
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.19%
80.2th percentile
Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to execute arbitrary SQL commands via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) messages/message_box.php, and (c) users/my.php; the (2) post_id parameter to (d) blogs/view_post.php; and the (3) blog_id parameter to (e) blogs/view.php, which are not properly cleansed by the convert_sortmode function in kernel/BitDb.php.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7fcp-9723-w34x: bitweaver 1
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2006-6924 [HIGH] GHSA-7fcp-9723-w34x: bitweaver 1
bitweaver 1.3.1 and earlier allows remote attackers to obtain sensitive information via a sort_mode=-98 query string to (1) blogs/list_blogs.php, (2) fisheye/index.php, (3) wiki/orphan_pages.php, or (4) wiki/list_pages.php, which forces a SQL error. NOTE: the fisheye/list_galleries.php vector is already covered by CVE-2005-4380.
GHSA
GHSA-jcj6-hcrj-4hgv: Multiple SQL injection vulnerabilities in Bitweaver 1
ghsa_unreviewed·2022-05-01
CVE-2005-4380 [HIGH] CWE-89 GHSA-jcj6-hcrj-4hgv: Multiple SQL injection vulnerabilities in Bitweaver 1
Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to execute arbitrary SQL commands via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) messages/message_box.php, and (c) users/my.php; the (2) post_id parameter to (d) blogs/view_post.php; and the (3) blog_id parameter to (e) blogs/view.php, which are not properly cleansed by the convert_sortmode function in kernel/BitDb.php.
No detection rules found.
Exploit-DB
Bitweaver 1.1.1 - 'my.php?sort_mode' Cross-Site Scripting
exploitdb·2005-12-19
CVE-2005-4380 Bitweaver 1.1.1 - 'my.php?sort_mode' Cross-Site Scripting
Bitweaver 1.1.1 - 'my.php?sort_mode' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15962/info
bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.
bitweaver 1.1.1 beta and prior are vulnerable; other versions may also be affected.
http://www.example.com/users/my.php?sort_mode=[SQL]
Exploit-DB
Bitweaver 1.1.1 Beta - 'list_galleries.php?sort_mode' Cross-Site Scripting
exploitdb·2005-12-19
CVE-2005-4380 Bitweaver 1.1.1 Beta - 'list_galleries.php?sort_mode' Cross-Site Scripting
Bitweaver 1.1.1 Beta - 'list_galleries.php?sort_mode' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15962/info
bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.
bitweaver 1.1.1 beta and prior are vulnerable; other versions may also be affected.
http://www.example.com/fisheye/list_galleries.php?sort_mode=[SQL]
Exploit-DB
Bitweaver 1.1.1 - 'view.php?blog_id' Cross-Site Scripting
exploitdb·2005-12-19
CVE-2005-4380 Bitweaver 1.1.1 - 'view.php?blog_id' Cross-Site Scripting
Bitweaver 1.1.1 - 'view.php?blog_id' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15962/info
bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.
bitweaver 1.1.1 beta and prior are vulnerable; other versions may also be affected.
http://www.example.com/blogs/view.php?blog_id=[SQL]
Exploit-DB
Bitweaver 1.1.1 - 'view_post.php?post_id' Cross-Site Scripting
exploitdb·2005-12-19
CVE-2005-4380 Bitweaver 1.1.1 - 'view_post.php?post_id' Cross-Site Scripting
Bitweaver 1.1.1 - 'view_post.php?post_id' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15962/info
bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.
bitweaver 1.1.1 beta and prior are vulnerable; other versions may also be affected.
http://www.example.com/blogs/view_post.php?post_id=[SQL]
Exploit-DB
Bitweaver 1.1.1 - 'message_box.php?sort_mode' Cross-Site Scripting
exploitdb·2005-12-19
CVE-2005-4380 Bitweaver 1.1.1 - 'message_box.php?sort_mode' Cross-Site Scripting
Bitweaver 1.1.1 - 'message_box.php?sort_mode' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15962/info
bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks.
bitweaver 1.1.1 beta and prior are vulnerable; other versions may also be affected.
http://www.example.com/messages/message_box.php?sort_mode=[SQL]
No writeups or analysis indexed.
http://pridels0.blogspot.com/2005/12/bitweaver-multiple-vuln.htmlhttp://www.bitweaver.org/forums/viewtopic.php?t=1299http://www.osvdb.org/21919http://www.osvdb.org/21920http://www.osvdb.org/21921http://www.osvdb.org/21922http://www.osvdb.org/21923http://www.securityfocus.com/bid/15962http://www.vupen.com/english/advisories/2005/2975https://exchange.xforce.ibmcloud.com/vulnerabilities/23814http://pridels0.blogspot.com/2005/12/bitweaver-multiple-vuln.htmlhttp://www.bitweaver.org/forums/viewtopic.php?t=1299http://www.osvdb.org/21919http://www.osvdb.org/21920http://www.osvdb.org/21921http://www.osvdb.org/21922http://www.osvdb.org/21923http://www.securityfocus.com/bid/15962http://www.vupen.com/english/advisories/2005/2975https://exchange.xforce.ibmcloud.com/vulnerabilities/23814
2005-12-20
Published