CVE-2012-2985

2022-10-0316:15:37

certcc

www.cve.org

vulnerability

xss

cute editor

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.8%

JSON

Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.

References

www.kb.cert.org/vuls/id/247235