CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-1023

HIGH
7.5
CVSS Severity Score
EPSS Score0.0450%
EPSS Percentile27.64th
Published2007年2月21日
Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in pop_profile.asp in Snitz Forums 2000 3.1 SR4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected Platforms (CPE)

📦
Snitz Communications

Snitz Forums 2000

= 3.1

References & Advisories

🔗 http://osvdb.org/35131
🔗 http://www.securityfocus.com/bid/22593
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/32543
🔗 https://www.exploit-db.com/exploits/3321
🔗 http://osvdb.org/35131
🔗 http://www.securityfocus.com/bid/22593
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/32543
🔗 https://www.exploit-db.com/exploits/3321

相关漏洞威胁

CVE-2006-56039.8

SQL injection vulnerability in pop_mail.asp in Snitz Forums 2000 3.4.06 allows remote attackers to execute arbitrary SQL commands ...

CVE-2003-02867.5

SQL injection vulnerability in register.asp in Snitz Forums 2000 before 3.4.03, and possibly 3.4.07 and earlier, allows remote att...

CVE-2002-03297.5

Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as ...

CVE-2002-06077.5

members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection ...