5
CVE-2004-1687
- EPSS 7.75%
- Veröffentlicht 16.09.2004 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Snitz Communications ≫ Snitz Forums 2000 Version3.0
Snitz Communications ≫ Snitz Forums 2000 Version3.1 Updatesr4
Snitz Communications ≫ Snitz Forums 2000 Version3.3
Snitz Communications ≫ Snitz Forums 2000 Version3.3.01
Snitz Communications ≫ Snitz Forums 2000 Version3.3.02
Snitz Communications ≫ Snitz Forums 2000 Version3.3.03
Snitz Communications ≫ Snitz Forums 2000 Version3.4.02
Snitz Communications ≫ Snitz Forums 2000 Version3.4.03
Snitz Communications ≫ Snitz Forums 2000 Version3.4.04
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 7.75% | 0.916 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|