Vulnerabilities > CVE-2003-0492 - Unspecified vulnerability in Snitz Communications Snitz Forums 2000 3.4.03
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cross-site scripting (XSS) vulnerability in search.asp for Snitz Forums 3.4.03 and earlier allows remote attackers to execute arbitrary web script via the Search parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Snitz Forums 2000 < 3.4.0.3 - Multiple Vulnerabilities. Webapps exploit for Multiple platform id EDB-ID:43445 last seen 2018-01-24 modified 2003-06-16 published 2003-06-16 reporter Exploit-DB source https://www.exploit-db.com/download/43445/ title Snitz Forums 2000 < 3.4.0.3 - Multiple Vulnerabilities description Snitz Forums 2000 3.4 .03 Search.ASP Cross-Site Scripting Vulnerability. CVE-2003-0492. Webapps exploit for asp platform id EDB-ID:22778 last seen 2016-02-02 modified 2003-06-16 published 2003-06-16 reporter JeiAr source https://www.exploit-db.com/download/22778/ title Snitz Forums 2000 3.4.03 - Search.ASP Cross-Site Scripting Vulnerability
Nessus
NASL family | CGI abuses |
NASL id | SNITZ_FORUMS_2000_XSS.NASL |
description | The remote host is using Snitz Forum 2000. This set of CGI is vulnerable to a cross-site-scripting issue that may allow attackers to steal the cookies of your users. In addition to this flaw, a user may use the file Password.ASP to reset arbitrary passwords, therefore gaining administrative access on this web system. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11597 |
published | 2003-05-07 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11597 |
title | Snitz Forums 2000 3.4.03 Multiple Vulnerabilities |
code |
|