Every CVE whose affected-product data names Bti-tracker, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2007-2854 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in account_change.php in BtiTracker 1.4.1 and earlier allow remote attackers to execute arbitrary…
CVE-2007-5988 — CVSS 7.5 (high): blocks/shoutbox_block.php in BtiTracker 1.4.4 does not verify user accounts, which allows remote attackers to post shoutbox entries as…
CVE-2007-5987 — CVSS 6.8 (medium): details.php in BtiTracker before 1.4.5, when torrent viewing is disabled for guests, allows remote attackers to bypass protection…
CVE-2006-7159 — CVSS 6.4 (medium): Directory traversal vulnerability in include/prune_torrents.php in BTI-Tracker 1.3.2 (aka btitracker) allows remote attackers to delete…
CVE-2007-5985 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in BtiTracker before 1.4.5 allow remote attackers to inject arbitrary web script or…