CVE-2012-2985

2012-08-2110:00:00

certcc

www.cve.org

vulnerability

xss

cute editor

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

39.1%

JSON

Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.

References

www.kb.cert.org/vuls/id/247235