CVE-2004-2720

2007-10-0621:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.006

Percentile

79.2%

JSON

Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email parameter.

References

forum.snitz.com/forum/topic.asp?TOPIC_ID=53360

secunia.com/advisories/11895

securityreason.com/securityalert/3200

securitytracker.com/id?1010524

www.osvdb.org/7190

www.sec-tec.co.uk/vulnerability/snitzxss.html

www.securityfocus.com/archive/1/366309

www.securityfocus.com/bid/10564

exchange.xforce.ibmcloud.com/vulnerabilities/16444