Filtered by vendor Snitz Communications Subscriptions
Filtered by product Snitz Forums 2000 Subscriptions

Search

Switch to Advanced Search (Beta)
Total 25 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2003-0493 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
Snitz Forums 3.4.03 and earlier allows attackers to gain privileges as other users by stealing and replaying the encrypted password after obtaining a valid session ID.
CVE-2002-0329 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.
CVE-2004-2720 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email parameter.
CVE-2003-0494 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.
CVE-2003-0286 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 N/A
SQL injection vulnerability in register.asp in Snitz Forums 2000 before 3.4.03, and possibly 3.4.07 and earlier, allows remote attackers to execute arbitrary stored procedures via the Email variable.