Snitz Forums 2000 Security Vulnerabilities and Issues — Snitz Forums 2000 CVE List

Lucene search

Snitz CommunicationsSnitz Forums 2000

4 matches found

CVE•added 2007/02/21 11:28 a.m.•41 views

CVE-2007-1023

SQL injection vulnerability in pop_profile.asp in Snitz Forums 2000 3.1 SR4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

7.5CVSS8.4AI score0.00291EPSS

CVE•added 2007/12/05 11:46 a.m.•40 views

CVE-2007-6240

SQL injection vulnerability in active.asp in Snitz Forums 2000 3.4.06 allows remote attackers to execute arbitrary SQL commands via the BuildTime parameter.

7.5CVSS8.4AI score0.0045EPSS

CVE•added 2007/03/10 12:19 a.m.•32 views

CVE-2007-1374

Cross-site scripting (XSS) vulnerability in pop_profile.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the MSN parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

4.3CVSS5.6AI score0.00285EPSS

CVE•added 2007/10/06 9:0 p.m.•31 views

CVE-2004-2720

Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email parameter.

4.3CVSS6AI score0.07203EPSS