CVE-2002-0329

Snitz Forums 2000 <= 3.3.03 - Cross-Site Scripting via IMG Tag

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0329. PoCs published by Justin.

AI-analyzed exploit summary This exploit demonstrates a stored XSS vulnerability in Snitz Forums 2000 by injecting arbitrary JavaScript code via the [img] tag. The PoC shows how an attacker can execute script code in the context of the forum, potentially stealing authentication credentials.

Description

Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Justin · textwebappsasp
https://www.exploit-db.com/exploits/21308

This exploit demonstrates a stored XSS vulnerability in Snitz Forums 2000 by injecting arbitrary JavaScript code via the [img] tag. The PoC shows how an attacker can execute script code in the context of the forum, potentially stealing authentication credentials.

Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Snitz Forums 2000
No auth needed
Prerequisites: Access to post a forum message with malicious [img] tag
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit, Patch, Vendor Advisory x_refsource_confirm
http://forum.snitz.com/forum/link.asp?TOPIC_ID=23660
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=101485184605149&w=2
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/132011
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4192
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/258981
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/8309.php

Scores

EPSS 0.0494
EPSS Percentile 91.1%

Details

Status published
Products (6)
snitz_communications/snitz_forums_2000 3.0
snitz_communications/snitz_forums_2000 3.1 sr4
snitz_communications/snitz_forums_2000 3.2.03
snitz_communications/snitz_forums_2000 3.3
snitz_communications/snitz_forums_2000 3.3.01
snitz_communications/snitz_forums_2000 3.3.02
Published Jun 25, 2002
Tracked Since Feb 18, 2026