6 matches found
EUVD-2005-1573
Malware in sbrugna...
Battleaxe Software BttlxeForum 2.0 Failure.ASP Cross-Site Scripting Vulnerability
No description provided by source...
CVE-2006-0974
CVE-2006-0974 describes a cross-site scripting vulnerability in failure.asp of Battleaxe bttlxeForum 2.0, exploitable via the err_txt parameter to inject arbitrary script/HTML. Affected component: failure.asp in Battleaxe bttlxeForum 2.0. The NVD entry lists a CVSS v2 base score of 4.3 (Medium) w...
Battleaxe Software BttlxeForum 2.0 - 'Failure.asp' Cross-Site Scripting
source: https://www.securityfocus.com/bid/16821/info Battleaxe Software's bttlxeForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...
CVE-2003-0215
The CVE-2003-0215 issue affects bttlxeForum 2.0 beta 3 and earlier, due to a SQL injection vulnerability in the authentication path (username and password fields) that can bypass login. Evidence from multiple sources describes remote attackers potentially gaining access by injecting SQL, with at ...
CVE-2003-0215
SQL injection vulnerability in bttlxeForum 2.0 beta 3 and earlier allows remote attackers to bypass authentication via the 1 username and 2 password fields, and possibly other fields...