CVE-2002-0607

2002-06-18T04:00:00
ID CVE-2002-0607
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:28:00

Description

members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4) LastName, or (5) INITIAL.