Vulnerabilities > Btiteam > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-16 | CVE-2021-45821 | SQL Injection vulnerability in Btiteam Xbtit 3.1 A blind SQL injection vulnerability exists in Xbtit 3.1 via the sid parameter in ajaxchat/getHistoryChatData.php file that is accessible by a registered user. | 8.8 |
| 2018-09-05 | CVE-2018-15682 | Cross-Site Request Forgery (CSRF) vulnerability in Btiteam Xbtit 2.5.4 An issue was discovered in BTITeam XBTIT. | 8.8 |