CVE-2006-6925 in bitweaver信息

摘要

由 VulDB • 2026-06-21

bitweaver 1.3.1及更早版本中存在多个跨站脚本(XSS)漏洞,远程攻击者可通过以下途径注入任意Web脚本或HTML:(1)向articles/edit.php提交文章时的消息标题字段;(2)向blogs/post.php提交博客帖子时的消息标题字段;(3)在wiki/edit.php的沙盒中编辑时的消息描述字段。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Want to know what is going to be exploited?

We predict KEV entries!