|
Family: CGI abuses : XSS --> Category: infos
Snitz Forums 2000 Password Reset and XSS Vulnerability Scan
Vulnerability Scan Summary Determine if Snitz forums is vulnerable to xss attack
Detailed Explanation for this Vulnerability Test
The remote host is using Snitz Forum 2000.
This set of CGI is vulnerable to a cross-site-scripting issue
that may allow attackers to steal the cookies of your
users.
In addition to this flaw, a user may use the file Password.ASP to
reset arbitrary passwords, therefore gaining administrative access
on this web system.
Solution: Upgrade to a newer version.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|