← CVECheck
HomeVulnerabilities

CVE-2003-0494 — HIGH severity vulnerability (password.asp in Snitz Forums 3.4.03 and earlier allows remot)

password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.

CVE IDCVE-2003-0494
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2003-08-07
Last modified2026-04-16
Descriptionpassword.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →