Snitz Forums 2000 3.4.03 - Search.ASP Cross-Site Scripting Vulnerability

ID EDB-ID:22778
Type exploitdb
Reporter JeiAr
Modified 2003-06-16T00:00:00


Snitz Forums 2000 3.4 .03 Search.ASP Cross-Site Scripting Vulnerability. CVE-2003-0492. Webapps exploit for asp platform


Snitz Forums is prone to cross-site scripting attacks. This is due to insufficient sanitization of data passed to the search facility via URI parameters.

Exploitation may allow theft of cookie-based authentication credentials or other attacks.

This issue was reported in Snitz Forums, other versions might also be affected."><script>alert()</script>