CVE-2006-6924 in bitweaver信息

摘要

由 VulDB • 2026-06-25

bitweaver 1.3.1及更早版本允许远程攻击者通过向(1) blogs/list_blogs.php、(2) fisheye/index.php、(3) wiki/orphan_pages.php或(4) wiki/list_pages.php发送包含sort_mode=-98的查询字符串,从而获取敏感信息。该操作会强制引发SQL错误。注意:fisheye/list_galleries.php攻击向量已由CVE-2005-4380覆盖。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Interested in the pricing of exploits?

See the underground prices here!