Filtered by vendor Snitz Communications Subscriptions
Filtered by product Snitz Forums 2000 Subscriptions

Search

Switch to Advanced Search (Beta)
Total 25 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2003-0492 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in search.asp for Snitz Forums 3.4.03 and earlier allows remote attackers to execute arbitrary web script via the Search parameter.
CVE-2003-0493 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
Snitz Forums 3.4.03 and earlier allows attackers to gain privileges as other users by stealing and replaying the encrypted password after obtaining a valid session ID.
CVE-2003-0494 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.
CVE-2006-2959 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
SQL injection vulnerability in inc_header.asp in Snitz Forum 3.4.05 and earlier allows remote attackers to execute arbitrary SQL commands via the %strCookieURL%.GROUP parameter in a cookie.
CVE-2005-3411 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method.