Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-07-12T21:00:00
Updated: 2024-08-06T20:21:04.079Z
Reserved: 2012-07-12T00:00:00
Link: CVE-2012-4000
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-07-12T21:55:08.733
Modified: 2017-08-29T01:32:08.023
Link: CVE-2012-4000
Redhat
No data.