Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Snitz Communications Subscribe
Filtered by product Snitz Forums 2000
Total 25 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-1687 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 5.0 MEDIUM N/A
CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter.
CVE-2004-2720 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email parameter.
CVE-2003-0492 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 6.8 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in search.asp for Snitz Forums 3.4.03 and earlier allows remote attackers to execute arbitrary web script via the Search parameter.
CVE-2002-0329 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 7.5 HIGH N/A
Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.
CVE-2003-0494 1 Snitz Communications 1 Snitz Forums 2000 2025-04-03 10.0 HIGH N/A
password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.