CVE-2012-4000 in FCKeditorinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

12/07/2012

Divulgazione

12/07/2012

Moderazione

accettato

Voce

VDB-61275

CPE

pronto

CWE

CWE-79 (confermato)

Sfruttamento

Scaricare

CVSS

4.3 (NVD)

EPSS

0.04251

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4000
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4000
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4000/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!