CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-0494

password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.3%

CVSS Severity

CVSS v2 Score 10.0

References

http://marc.info/?l=bugtraq&m=105578322012128&w=2
http://www.securityfocus.com/bid/7925
https://exchange.xforce.ibmcloud.com/vulnerabilities/12326
http://marc.info/?l=bugtraq&m=105578322012128&w=2
http://www.securityfocus.com/bid/7925
https://exchange.xforce.ibmcloud.com/vulnerabilities/12326

Products affected by CVE-2003-0494

Snitz Communications » Snitz Forums 2000 » Version: 3.4.03

cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.03

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0494

Products

Pricing

Contact Us