Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1493 matches found

Cvelist
Cvelistadded 2008/01/10 12:0 a.m.18 views

CVE-2008-0208

Cross-site scripting XSS vulnerability in login.asp in Snitz Forums 2000 3.4.05 and earlier allows remote attackers to inject arbitrary web script or HTML via the target parameter...

5.7AI score0.00363EPSS
Exploits1References5
CVE
CVEadded 2008/01/10 12:0 a.m.42 views

CVE-2008-0209

CVE-2008-0209 : An open redirect vulnerability in the Forums/login.asp page of Snitz Forums 2000 3.4.06 and earlier allows remote attackers to redirect users to arbitrary external sites by supplying a malicious value in the target parameter. The provided connected documents do not specify the exa...

5.8CVSS6.7AI score0.00276EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2008/01/10 12:0 a.m.50 views

CVE-2008-0208

The CVE-2008-0208 issue affects Snitz Forums 2000, specifically login.asp in versions 3.4.05 and earlier. The vulnerability is a reflected Cross‑site Scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via the target parameter. The connected documents confirm ...

4.3CVSS5.7AI score0.00363EPSS
Exploits1References5Affected Software1
Prion
Prionadded 2008/01/08 7:46 p.m.9 views

Path traversal

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path...

5CVSS6.7AI score0.00319EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2008/01/08 7:46 p.m.8 views

Improper access control

Snitz Forums 2000 3.4.06 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum/snitzforums2000.mdb...

5CVSS6.9AI score0.05093EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2008/01/08 7:46 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to inject arbitrary web script or HTML via the MAIL parameter...

4.3CVSS6.2AI score0.00351EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2008/01/08 7:46 p.m.16 views

CVE-2008-0135

Snitz Forums 2000 3.4.06 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum/snitzforums2000.mdb...

5CVSS6.4AI score0.05093EPSS
Exploits0References4
NVD
NVDadded 2008/01/08 7:46 p.m.13 views

CVE-2008-0136

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path...

5CVSS6.1AI score0.00319EPSS
Exploits0References4
NVD
NVDadded 2008/01/08 7:46 p.m.14 views

CVE-2008-0134

Cross-site scripting XSS vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to inject arbitrary web script or HTML via the MAIL parameter...

4.3CVSS5.7AI score0.00351EPSS
Exploits0References5
Cvelist
Cvelistadded 2008/01/08 7:0 p.m.17 views

CVE-2008-0136

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path...

6.1AI score0.00319EPSS
Exploits0References4
CVE
CVEadded 2008/01/08 7:0 p.m.43 views

CVE-2008-0134

CVE-2008-0134 is a cross-site scripting (XSS) vulnerability in the Forums/setup.asp component of Snitz Forums 2000, version 3.4.06 and earlier. The issue is triggered via the MAIL parameter, allowing remote attackers to inject arbitrary web script or HTML. The NVD entry documents a base score of ...

4.3CVSS5.7AI score0.00351EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2008/01/08 7:0 p.m.40 views

CVE-2008-0135

CVE-2008-0135 affects Snitz Forums 2000 up to version 3.4.06, where sensitive data is stored under the web root with insufficient access control. This allows remote attackers to download the forum/snitz_forums_2000.mdb directly via HTTP, exposing the database. The impact described is exposure of ...

5CVSS6.4AI score0.05093EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2008/01/08 7:0 p.m.16 views

CVE-2008-0134

Cross-site scripting XSS vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to inject arbitrary web script or HTML via the MAIL parameter...

5.7AI score0.00351EPSS
Exploits0References5
CVE
CVEadded 2008/01/08 7:0 p.m.43 views

CVE-2008-0136

CVE-2008-0136 affects Snitz Forums 2000 3.4.05. The vulnerability allows remote attackers to disclose sensitive information by requesting forum/whereami.asp, revealing the database path. The issue is a direct information disclosure via a crafted HTTP request, enabling partial confidentiality impa...

5CVSS6.2AI score0.00319EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2008/01/08 7:0 p.m.17 views

CVE-2008-0135

Snitz Forums 2000 3.4.06 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum/snitzforums2000.mdb...

6.4AI score0.05093EPSS
Exploits0References4
Exploit DB
Exploit DBadded 2008/01/07 12:0 a.m.22 views

Snitz Forums 2000 3.4.5/3.4.6 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/27162/info Snitz Forums 2000 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

7AI score
Exploits0
Packet Storm
Packet Stormadded 2008/01/07 12:0 a.m.31 views

snitz-multi.txt

HSC Snitz Forums Multiple Vulnerabilities Snitz Forums Default Database installation allows remote users to download the database which contains critical information. As a result, an attacker exploiting this vulnerability will be able to obtain detailed information. An attacker may leverage xss...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2008/01/07 12:0 a.m.11 views

Snitz Forums 2000 3.4.53.4.6 - Multiple Cross-Site Scripting Vulnerabilities

Snitz Forums 2000 3.4.53.4.6 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/27162/info Snitz Forums 2000 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

Exploits0
xssed
xssedadded 2007/12/25 12:0 a.m.10 views

Unfixed XSS vulnerability at forums.healthyplace.com

Security researcher TreX, has submitted on 25/12/2007 a cross-site-scripting XSS vulnerability affecting forums.healthyplace.com, which at the time of submission ranked 60973 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/01/2008. It is...

0.1AI score
Exploits0References1
Prion
Prionadded 2007/12/15 1:46 a.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Bitweaver 2.0.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 users/register.php or 2 search/index.php, or an editcomments action in 3 wiki/index.php or 4 forums/index.php. NOTE: the error...

4.3CVSS5.9AI score0.0223EPSS
Exploits2References9Affected Software1
Rows per page
Query Builder