CVE-2003-0494

password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.
Configurations

Configuration 1 (hide)

cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.03:*:*:*:*:*:*:*

History

20 Nov 2024, 23:44

Type Values Removed Values Added
References () http://marc.info/?l=bugtraq&m=105578322012128&w=2 - () http://marc.info/?l=bugtraq&m=105578322012128&w=2 -
References () http://www.securityfocus.com/bid/7925 - Vendor Advisory () http://www.securityfocus.com/bid/7925 - Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/12326 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/12326 -

Information

Published : 2003-08-07 04:00

Updated : 2024-11-20 23:44


NVD link : CVE-2003-0494

Mitre link : CVE-2003-0494

CVE.ORG link : CVE-2003-0494


JSON object : View

Products Affected

snitz_communications

  • snitz_forums_2000