login | register
Tue 07 of Oct, 2008 (15:07 UTC)

bitweaver - Web Application Framework and CMS

Web Application Framework and CMS

Refresh cache

Bitweaver Cross-Site Scripting

by Betatester
Tuesday 11 of December, 2007
Class: Cross-Site Scripting & SQL


Vendor: http://www.bitweaver.org/
Product: Bitweaver
Version: 2.0.0 & Previous



Examples:


/users/register.php/XSS
/search/index.php/XSS
/users/login.php?error=XSS


Persistent XSS:

If comments are allowed, attackers can use this url /wiki/index.php?page_id=1#editcomments
to POST evil scripts and PHP code into the page. Sanitizing the input will prevent intrusion.

Also we see that on forums there is the same issue: (NEED TO SANITIZE THE INPUT)

/forums/index.php?t=1&post_comment_reply_id=1&post_comment_request=1#editcomments


White Screen of Death: (SQL Injection)

Critical information is listed o nthis page when you inject evil code.
Some work if you inject JavaScript Code into the Search box and some show
this page by following url: /wiki/list_pages.php?sort_mode='

By Search:

/search/index.php?tk=316dccdfb62a3cad613e&highlight=SQL_INJECTION=&search=go


Google Dork: Powered by bitweaver
Permalink  •  2 Comments

Comments

Reply to this comment

It's about...

by GST, Wednesday 23 of January, 2008 (15:23:35 UTC)
This post seem to be about one of the two security vulnerabilities (actually tree, but reported as two:-) that seem to be doing the rounds on the diverse security sites... Look at http://secunia.com/advisories/28024/ and http://secunia.com/advisories/28300/ for more details.

Largely it seem to be related to ways of injecting code through "sloppy" checking of POST data (their words, not mine:-) etc.

Since this is very public... and at least claimed to be affecting R2, you should take it seriously... If you haven't already:-).

Cheers
-- Glenn
Reply to this comment

Re: It's about...

by Kozuch, Tuesday 29 of January, 2008 (07:45:49 UTC)
I think these issues are taken care about in version 2.0.1.