Unrated severityNVD Advisory· Published Sep 14, 2006· Updated Apr 16, 2026

CVE-2006-4796

Description

Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).

Affected products

Snitz Communications/Snitz Forums 2000
cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.06:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/20004nvdExploitPatch
forum.snitz.com/forum/topic.aspnvd
secunia.com/advisories/21946nvd
securityreason.com/securityalert/1578nvd
www.osvdb.org/28832nvd
www.securityfocus.com/archive/1/445902/100/0/threadednvd
www.securityfocus.com/archive/1/446043/100/0/threadednvd
www.vupen.com/english/advisories/2006/3632nvd
exchange.xforce.ibmcloud.com/vulnerabilities/28921nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000