Snitz · Snitz Forums 2000 · CVE-2003-0286
Name of the Vulnerable Software and Affected Versions:
Snitz Forums 2000 versions prior to 3.4.03
Description:
The issue allows remote attackers to execute arbitrary stored procedures via the `Email` variable in the register.asp file.
Recommendations:
For versions prior to 3.4.03, update to version 3.4.03 or later to resolve the issue.