CVE-2002-0329

Published: Jun 25, 2002Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.

Affected (6)

Products: Snitz Communications: Snitz Forums 2000

Snitz Communications

1 product

Snitz Forums 2000

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Snitz Communications Snitz Forums 2000	Version 3.0
Snitz Communications Snitz Forums 2000	Version 3.1 sr4
Snitz Communications Snitz Forums 2000	Version 3.2.03
Snitz Communications Snitz Forums 2000	Version 3.3.01
Snitz Communications Snitz Forums 2000	Version 3.3.02
Snitz Communications Snitz Forums 2000	Version 3.3

References (12)

http://forum.snitz.com/forum/link.asp?TOPIC_ID=23660

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://marc.info/?l=bugtraq&m=101485184605149&w=2

Source: cve@mitre.org

http://online.securityfocus.com/archive/1/258981

Source: cve@mitre.org

http://www.iss.net/security_center/static/8309.php

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://www.kb.cert.org/vuls/id/132011

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/4192

Source: cve@mitre.org

http://forum.snitz.com/forum/link.asp?TOPIC_ID=23660

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://marc.info/?l=bugtraq&m=101485184605149&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://online.securityfocus.com/archive/1/258981

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/8309.php

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://www.kb.cert.org/vuls/id/132011

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.securityfocus.com/bid/4192

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.