ByteOS

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.securityfocus.com/bid/22869

Resource:

vdb-entry

x_refsource_BID

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://osvdb.org/33885	vdb-entry x_refsource_OSVDB x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/32879	vdb-entry x_refsource_XF x_transferred
http://secunia.com/advisories/24358	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.securityfocus.com/bid/22869	vdb-entry x_refsource_BID x_transferred

Hyperlink: http://osvdb.org/33885

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/32879

Resource:

vdb-entry

x_refsource_XF

x_transferred

cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.06:*:*:*:*:*:*:*

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.securityfocus.com/bid/22869

Resource:

vdb-entry

x_refsource_BID

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:10 Mar, 2007 | 00:19

Updated At:23 Apr, 2026 | 00:35

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:P/A:N

CPE Matches

snitz_communications>>snitz_forums_2000>>3.4.06

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://osvdb.org/33885	cve@mitre.org	N/A
http://secunia.com/advisories/24358	cve@mitre.org	N/A
http://www.securityfocus.com/bid/22869	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/32879	cve@mitre.org	N/A
http://osvdb.org/33885	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/24358	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/22869	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/32879	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://osvdb.org/33885

Source: cve@mitre.org

Resource: N/A

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/22869

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/32879

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://osvdb.org/33885

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/22869

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/32879

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Similar CVEs

7Records found

CVE-2010-4827

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-0.29% / 51.97%

7 Day CHG~0.00%

Published-24 Aug, 2011 | 10:00

Updated-29 Apr, 2026 | 01:13

Cross-site scripting (XSS) vulnerability in members.asp in Snitz Forums 2000 3.4.07 allows remote attackers to inject arbitrary web script or HTML via the M_NAME parameter. NOTE: some of these details are obtained from third party information.

Product-snitz_forums_2000 n/a

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2009-4554

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-1.04% / 77.64%

7 Day CHG~0.00%

Published-04 Jan, 2010 | 21:00

Updated-23 Apr, 2026 | 00:35

Multiple cross-site scripting (XSS) vulnerabilities in Snitz Forums 2000 3.4.07 allow remote attackers to inject arbitrary web script or HTML via (1) the url parameter to pop_send_to_friend.asp, related to a crafted onload attribute of an IMG element; or (2) an onload attribute in a sound tag.

Product-snitz_forums_2000 n/a

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2008-0134

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-0.35% / 57.64%

7 Day CHG~0.00%

Published-08 Jan, 2008 | 19:00

Updated-23 Apr, 2026 | 00:35

Cross-site scripting (XSS) vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to inject arbitrary web script or HTML via the MAIL parameter.

Product-snitz_forums_2000 n/a

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2008-0208

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-0.36% / 58.49%

7 Day CHG~0.00%

Published-10 Jan, 2008 | 00:00

Updated-23 Apr, 2026 | 00:35

Cross-site scripting (XSS) vulnerability in login.asp in Snitz Forums 2000 3.4.05 and earlier allows remote attackers to inject arbitrary web script or HTML via the target parameter.

Product-snitz_forums_2000 n/a

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2006-4796

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-6.45% / 91.17%

7 Day CHG~0.00%

Published-14 Sep, 2006 | 21:00

Updated-16 Apr, 2026 | 00:27

Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).

Product-snitz_forums_2000 n/a

CVE-2005-3411

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-0.81% / 74.36%

7 Day CHG~0.00%

Published-01 Nov, 2005 | 20:00

Updated-16 Apr, 2026 | 00:27

Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method.

Product-snitz_forums_2000 n/a

CVE-2004-2720

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-9.44% / 92.91%

7 Day CHG+0.37%

Published-06 Oct, 2007 | 21:00

Updated-16 Apr, 2026 | 00:27

Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email parameter.