Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).
References
Configurations
History
21 Nov 2024, 00:16
Type | Values Removed | Values Added |
---|---|---|
References | () http://forum.snitz.com/forum/topic.asp?TOPIC_ID=62773 - | |
References | () http://secunia.com/advisories/21946 - | |
References | () http://securityreason.com/securityalert/1578 - | |
References | () http://www.osvdb.org/28832 - | |
References | () http://www.securityfocus.com/archive/1/445902/100/0/threaded - | |
References | () http://www.securityfocus.com/archive/1/446043/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/20004 - Exploit, Patch | |
References | () http://www.vupen.com/english/advisories/2006/3632 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/28921 - |
Information
Published : 2006-09-14 21:07
Updated : 2024-11-21 00:16
NVD link : CVE-2006-4796
Mitre link : CVE-2006-4796
CVE.ORG link : CVE-2006-4796
JSON object : View
Products Affected
snitz_communications
- snitz_forums_2000
CWE