Battleaxe Software Bttlxeforum vulnerabilities
3 known vulnerabilities affecting battleaxe_software/bttlxeforum.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2003-0215P3HIGHCVSS 7.5PoC≤ 2.0_beta_32003-05-12
CVE-2003-0215 [HIGH] CVE-2003-0215: SQL injection vulnerability in bttlxeForum 2.0 beta 3 and earlier allows remote attackers to bypass
SQL injection vulnerability in bttlxeForum 2.0 beta 3 and earlier allows remote attackers to bypass authentication via the (1) username and (2) password fields, and possibly other fields.
nvd
CVE-2006-0974P4MEDIUMCVSS 4.3PoCv2.02006-03-03
CVE-2006-0974 [MEDIUM] CVE-2006-0974: Cross-site scripting (XSS) vulnerability in failure.asp in Battleaxe bttlxeForum 2.0 allows remote a
Cross-site scripting (XSS) vulnerability in failure.asp in Battleaxe bttlxeForum 2.0 allows remote attackers to inject arbitrary web script or HTML via the err_txt parameter.
nvd
CVE-2005-1570P4MEDIUMCVSS 5.0v2.02005-05-14
CVE-2005-1570 [MEDIUM] CVE-2005-1570: forum.asp in bttlxeForum 2.0 allows remote attackers to obtain full path information via a certain h
forum.asp in bttlxeForum 2.0 allows remote attackers to obtain full path information via a certain hex-encoded argument to the page parameter, possibly due to a SQL injection vulnerability.
nvd