Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Snitz Communications Subscribe
Filtered by product Snitz Forums 2000
Total 25 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-4826 1 Snitz Communications 1 Snitz Forums 2000 2012-10-23 7.5 HIGH N/A
SQL injection vulnerability in members.asp in Snitz Forums 2000 3.4.07 allows remote attackers to execute arbitrary SQL commands via the M_NAME parameter. NOTE: some of these details are obtained from third party information.
CVE-2010-4827 1 Snitz Communications 1 Snitz Forums 2000 2012-10-23 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in members.asp in Snitz Forums 2000 3.4.07 allows remote attackers to inject arbitrary web script or HTML via the M_NAME parameter. NOTE: some of these details are obtained from third party information.
CVE-2005-3411 1 Snitz Communications 1 Snitz Forums 2000 2011-03-07 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method.
CVE-2006-5603 1 Snitz Communications 1 Snitz Forums 2000 2008-09-05 7.5 HIGH N/A
SQL injection vulnerability in pop_mail.asp in Snitz Forums 2000 3.4.06 allows remote attackers to execute arbitrary SQL commands via the RC parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
CVE-2002-0607 1 Snitz Communications 1 Snitz Forums 2000 2008-09-05 7.5 HIGH N/A
members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4) LastName, or (5) INITIAL.