Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
snitz communications snitz forums 2000 3.3.03 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-0607
members.asp in Snitz Forums 2000 version 3.3.03 and previous versions allows remote malicious users to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4) LastName, or (5) INITIAL.
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000 3.3.03
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.3.02
1 EDB exploit
5
CVSSv2
CVE-2004-1687
CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote malicious users to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter.
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.4.03
Snitz Communications Snitz Forums 2000 3.4.04
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.3.03
Snitz Communications Snitz Forums 2000 3.4.02
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000 3.3
1 EDB exploit
5.8
CVSSv2
CVE-2008-0209
Open redirect vulnerability in Forums/login.asp in Snitz Forums 2000 3.4.06 and previous versions allows remote malicious users to redirect users to arbitrary web sites via a URL in the target parameter.
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.4.02
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.3.03
Snitz Communications Snitz Forums 2000 3.4.05
Snitz Communications Snitz Forums 2000
Snitz Communications Snitz Forums 2000 3.2.03
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000 3.4.04
Snitz Communications Snitz Forums 2000 3.4.03
Snitz Communications Snitz Forums 2000 3.0
4.3
CVSSv2
CVE-2008-0134
Cross-site scripting (XSS) vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the MAIL parameter.
Snitz Communications Snitz Forums 2000 3.4.04
Snitz Communications Snitz Forums 2000 3.2.03
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.4.03
Snitz Communications Snitz Forums 2000 3.4.02
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.3.03
Snitz Communications Snitz Forums 2000 3.4.05
Snitz Communications Snitz Forums 2000
5
CVSSv2
CVE-2008-0135
Snitz Forums 2000 3.4.06 and previous versions stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for forum/snitz_forums_2000.mdb.
Snitz Communications Snitz Forums 2000 3.4.02
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.4.05
Snitz Communications Snitz Forums 2000 3.3.03
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000
Snitz Communications Snitz Forums 2000 3.4.04
Snitz Communications Snitz Forums 2000 3.4.03
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.2.03
1 EDB exploit
4.3
CVSSv2
CVE-2008-0208
Cross-site scripting (XSS) vulnerability in login.asp in Snitz Forums 2000 3.4.05 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the target parameter.
Snitz Communications Snitz Forums 2000 3.4.04
Snitz Communications Snitz Forums 2000 3.4.03
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.2.03
Snitz Communications Snitz Forums 2000 3.4.02
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.3.03
Snitz Communications Snitz Forums 2000 3.3.01
7.5
CVSSv2
CVE-2006-2959
SQL injection vulnerability in inc_header.asp in Snitz Forum 3.4.05 and previous versions allows remote malicious users to execute arbitrary SQL commands via the %strCookieURL%.GROUP parameter in a cookie.
Snitz Communications Snitz Forums 2000 3.4.02
Snitz Communications Snitz Forums 2000 3.4.03
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.1
Snitz Communications Snitz Forums 2000 3.4.04
Snitz Communications Snitz Forums 2000 3.4.05
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.3.03
7.5
CVSSv2
CVE-2002-0329
Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and previous versions allows remote malicious users to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.
Snitz Communications Snitz Forums 2000 3.2.03
Snitz Communications Snitz Forums 2000 3.3
Snitz Communications Snitz Forums 2000 3.3.01
Snitz Communications Snitz Forums 2000 3.3.02
Snitz Communications Snitz Forums 2000 3.0
Snitz Communications Snitz Forums 2000 3.1
1 EDB exploit
4.3
CVSSv2
CVE-2004-2720
Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and previous versions allows remote malicious users to inject arbitrary web script or HTML via javascript events in the Email parameter.
Snitz Communications Snitz Forums 2000
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started