CVE-2006-6924
published 2007-01-13CVE-2006-6924: bitweaver 1.3.1 and earlier allows remote attackers to obtain sensitive information via a sort_mode=-98 query string to (1) blogs/list_blogs.php, (2)…
PriorityP424medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.30%
87.0th percentile
bitweaver 1.3.1 and earlier allows remote attackers to obtain sensitive information via a sort_mode=-98 query string to (1) blogs/list_blogs.php, (2) fisheye/index.php, (3) wiki/orphan_pages.php, or (4) wiki/list_pages.php, which forces a SQL error. NOTE: the fisheye/list_galleries.php vector is already covered by CVE-2005-4380.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
| bitweaver | bitweaver | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Bitweaver 1.x - '/fisheye/index.php?sort_mode' SQL Injection
exploitdb·2006-11-10
CVE-2006-6924 Bitweaver 1.x - '/fisheye/index.php?sort_mode' SQL Injection
Bitweaver 1.x - '/fisheye/index.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/20996/info
Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
Bitweaver 1.3.1 and prior versions are vulnerable; other versions may also be affected.
Since this issue is a duplicate of the the issue described in BID 20988 (Bitweaver Multiple Input Validation Vulnerabilities), this BID is being retired.
http://www.example.com/bitweaver/fisheye/index.php?sort_mod
Exploit-DB
Bitweaver 1.x - '/blogs/list_blogs.php?sort_mode' SQL Injection
exploitdb·2006-11-10
CVE-2006-6924 Bitweaver 1.x - '/blogs/list_blogs.php?sort_mode' SQL Injection
Bitweaver 1.x - '/blogs/list_blogs.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/20996/info
Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
Bitweaver 1.3.1 and prior versions are vulnerable; other versions may also be affected.
Since this issue is a duplicate of the the issue described in BID 20988 (Bitweaver Multiple Input Validation Vulnerabilities), this BID is being retired.
http://www.example.com/bitweaver/blogs/list_blogs.php?so
Exploit-DB
Bitweaver 1.x - '/wiki/orphan_pages.php?sort_mode' SQL Injection
exploitdb·2006-11-10
CVE-2006-6924 Bitweaver 1.x - '/wiki/orphan_pages.php?sort_mode' SQL Injection
Bitweaver 1.x - '/wiki/orphan_pages.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/20996/info
Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
Bitweaver 1.3.1 and prior versions are vulnerable; other versions may also be affected.
Since this issue is a duplicate of the the issue described in BID 20988 (Bitweaver Multiple Input Validation Vulnerabilities), this BID is being retired.
http://www.example.com/bitweaver/wiki/orphan_pages.php?
Exploit-DB
Bitweaver 1.x - '/wiki/list_pages.php?sort_mode' SQL Injection
exploitdb·2006-11-10
CVE-2006-6924 Bitweaver 1.x - '/wiki/list_pages.php?sort_mode' SQL Injection
Bitweaver 1.x - '/wiki/list_pages.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/20996/info
Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
Bitweaver 1.3.1 and prior versions are vulnerable; other versions may also be affected.
Since this issue is a duplicate of the the issue described in BID 20988 (Bitweaver Multiple Input Validation Vulnerabilities), this BID is being retired.
http://www.example.com/bitweaver/wiki/list_pages.php?find
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2006-11/0142.htmlhttp://secunia.com/advisories/22793http://securityreason.com/securityalert/2144http://www.securityfocus.com/bid/20996http://www.vupen.com/english/advisories/2006/4485https://exchange.xforce.ibmcloud.com/vulnerabilities/30165http://archives.neohapsis.com/archives/bugtraq/2006-11/0142.htmlhttp://secunia.com/advisories/22793http://securityreason.com/securityalert/2144http://www.securityfocus.com/bid/20996http://www.vupen.com/english/advisories/2006/4485https://exchange.xforce.ibmcloud.com/vulnerabilities/30165
2007-01-13
Published