CVE-2005-3411
Snitz Forums 2000 3.4.05 - Cross-Site Scripting via Type Parameter in Post.asp
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2005-3411. PoCs published by h4xorcrew.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in Snitz Forum due to improper input sanitization. The PoC URL injects arbitrary JavaScript code via the 'type' parameter, which executes in the context of the affected site.
Description
Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Snitz Forum due to improper input sanitization. The PoC URL injects arbitrary JavaScript code via the 'type' parameter, which executes in the context of the affected site.