Snitz Communications CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Snitz Communications Subscriptions

Search

Switch to Advanced Search (Beta)

Total 25 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2003-0494	1 Snitz Communications	1 Snitz Forums 2000	2025-04-03	N/A
password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.
CVE-2002-0607	1 Snitz Communications	1 Snitz Forums 2000	2025-04-03	N/A
members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4) LastName, or (5) INITIAL.
CVE-2006-4796	1 Snitz Communications	1 Snitz Forums 2000	2025-04-03	N/A
Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).
CVE-2003-0286	1 Snitz Communications	1 Snitz Forums 2000	2025-04-03	N/A
SQL injection vulnerability in register.asp in Snitz Forums 2000 before 3.4.03, and possibly 3.4.07 and earlier, allows remote attackers to execute arbitrary stored procedures via the Email variable.
CVE-2003-0492	1 Snitz Communications	1 Snitz Forums 2000	2025-04-03	N/A
Cross-site scripting (XSS) vulnerability in search.asp for Snitz Forums 3.4.03 and earlier allows remote attackers to execute arbitrary web script via the Search parameter.

« first previous Page 2 of 2.