Vulnerabilities > CVE-2006-0974 - Cross-Site Scripting vulnerability in Battleaxe Software Bttlxeforum 2.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in failure.asp in Battleaxe bttlxeForum 2.0 allows remote attackers to inject arbitrary web script or HTML via the err_txt parameter. This vulnerability affects Battleaxe Software, bttlxeForum versions 2.0 and previous
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Battleaxe Software BttlxeForum 2.0 Failure.ASP Cross-Site Scripting Vulnerability. CVE-2006-0974. Webapps exploit for asp platform |
id | EDB-ID:27310 |
last seen | 2016-02-03 |
modified | 2006-02-25 |
published | 2006-02-25 |
reporter | rUnViRuS |
source | https://www.exploit-db.com/download/27310/ |
title | Battleaxe Software BttlxeForum 2.0 Failure.ASP Cross-Site Scripting Vulnerability |