Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title_en, (2) summary_en, or (3) body_en parameter in a submitnews action to the news module, a different vulnerability than CVE-2012-4890. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-09-10T22:00:00
Updated: 2024-08-06T20:50:17.924Z
Reserved: 2012-09-10T00:00:00
Link: CVE-2012-4892
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-09-10T22:55:07.617
Modified: 2017-08-29T01:32:25.027
Link: CVE-2012-4892
Redhat
No data.