Unrated severityNVD Advisory· Published Feb 11, 2009· Updated Jun 16, 2026
CVE-2009-0530
CVE-2009-0530
Description
Multiple PHP remote file inclusion vulnerabilities in SnippetMaster 2.2.2, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) _SESSION[SCRIPT_PATH] parameter to includes/vars.inc.php and the (2) g_pcltar_lib_dir parameter to includes/tar_lib/pcltar.lib.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:electrictoad:snippetmaster_webpage_editor:2.2.2:*:*:*:*:*:*:*
- Range: =2.2.2
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/33705nvdExploit
- secunia.com/advisories/33865nvdVendor Advisory
- www.exploit-db.com/exploits/8017nvd
News mentions
0No linked articles in our index yet.