password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.
References
Configurations
History
20 Nov 2024, 23:44
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=105578322012128&w=2 - | |
References | () http://www.securityfocus.com/bid/7925 - Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/12326 - |
Information
Published : 2003-08-07 04:00
Updated : 2024-11-20 23:44
NVD link : CVE-2003-0494
Mitre link : CVE-2003-0494
CVE.ORG link : CVE-2003-0494
JSON object : View
Products Affected
snitz_communications
- snitz_forums_2000
CWE