Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbJeiArEDB-ID:22778
HistoryJun 16, 2003 - 12:00 a.m.

Snitz Forums 2000 3.4.03 - 'search.asp' Cross-Site Scripting

2003-06-1600:00:00
JeiAr
www.exploit-db.com
23

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/7922/info

Snitz Forums is prone to cross-site scripting attacks. This is due to insufficient sanitization of data passed to the search facility via URI parameters.

Exploitation may allow theft of cookie-based authentication credentials or other attacks.

This issue was reported in Snitz Forums 3.4.0.3, other versions might also be affected.

http://www.example.com/search.asp?Search="><script>alert()</script>

Related

cve 1
nvd 1
cvelist 1
nessus 1
exploitpack 1
exploitdb 1
cve
cve
CVE-2003-0492
2003-08-07 04:00:00
nvd
nvd
CVE-2003-0492
2003-08-07 04:00:00
cvelist
cvelist
CVE-2003-0492
2003-06-28 04:00:00
nessus
nessus
Snitz Forums 2000 3.4.03 Multiple Vulnerabilities
2003-05-07 00:00:00
exploitpack
exploitpack
Snitz Forums 2000 3.4.0.3 - Multiple Vulnerabilities
2003-06-16 00:00:00
exploitdb
exploitdb
Snitz Forums 2000 < 3.4.0.3 - Multiple Vulnerabilities
2003-06-16 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:22778
cve1nvd1cvelist1nessus1exploitpack1exploitdb1