Snitz Forums Register Script HTML Injection Vulnerability

Snitz Forums is prone to an HTML injection vulnerability. User-supplied data through the 'Email' field of 'register.asp' script is not properly sanitized. It is reported that an attacker can supply malicious HTML or script code through this field that will be posted on a vulnerable forum.

Snitz Forums versions 3.4.04 and prior are affected by this issue.


 

Privacy Statement
Copyright 2010, SecurityFocus