Vulnerabilities in Snitz Forums 3.4.0.3 Versions Affected: 3.4.0.3 (current) Vendor Website: http://www.snitz.com Vendor Notification: Informed Products Affected Snitz Forums (version 3.4.0.3) Vulnerabilities search.asp Search Feature XSS Vulnerability Description: Snitz search feature is vulnerable to XSS attacks. Impact: Can aid in stealing cookies and compromising accounts. Example: Account Compromise via Cookie Poisoning Description: An attacker can steal another user's identity by obtaining their encrypted password. Impact: Compromising the victim's account. Steps: 1. Obtain the victim's encrypted password using the XSS vulnerability or other methods. 2. Login with their normal account. 3. Close the browser, replace their username and encrypted password with the victim's information. 4. Return to the site as the victim. password.asp Password Reset Vulnerability Description: The most serious vulnerability requiring no real effort, leaving the entire forum open to attack. Impact: Allows an attacker to reset the password of any user. Steps: 1. Request a forgotten password. 2. Save the password reset page offline. 3. Edit the member ID to the desired user's ID. 4. Submit the form. 5. The password is reset to that chosen by the attacker. ``` This markdown summarizes the key information about the vulnerabilities in the Snitz Forums version 3.4.0.3 as described in the provided screenshot.