[] NeoSense
E X P L O I T S
title author type platform port cve id

SnapStream PVS Lite 2.0 - Cross-Site Scripting

Author: Rafel Ivgi
type: remote
platform: windows
port: 
date_added: 2004-01-06 
date_updated: 2012-12-20 
verified: 1 
codes: CVE-2004-0046;OSVDB-3440 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/9375/info

SnapStream PVS Lite is prone to a cross-site scripting vulnerability.

An attacker could exploit this issue by enticing a victim user to follow a malicious link to a system hosting the software that contains embedded HTML and script code. The embedded code may be rendered in the web browser of the victim user.

This could be exploited to steal cookie-based authentication credentials from legitimate users. Other attacks are also possible.

http://www.example.com/?"><script>alert('XSS')</script>
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.