Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://www.kb.cert.org/vuls/id/247235 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2012-08-21T10:00:00Z
Updated: 2024-09-17T00:31:49.412Z
Reserved: 2012-05-30T00:00:00Z
Link: CVE-2012-2985
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2012-08-21T10:46:10.577
Modified: 2012-08-21T10:46:10.577
Link: CVE-2012-2985
Redhat
No data.