Search...

Debian DSA-2522-1 : fckeditor - XSS

2012-08-07T00:00:00

ID DEBIAN_DSA-2522.NASL
Type nessus
Reporter Tenable
Modified 2018-11-10T00:00:00

Description

Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2522. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include("compat.inc");

if (description)
{
  script_id(61438);
  script_version("1.7");
  script_cvs_date("Date: 2018/11/10 11:49:35");

  script_cve_id("CVE-2012-4000");
  script_bugtraq_id(54188);
  script_xref(name:"DSA", value:"2522");

  script_name(english:"Debian DSA-2522-1 : fckeditor - XSS");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Emilio Pinna discovered a cross site scripting vulnerability in the
spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for
the web."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/fckeditor"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2012/dsa-2522"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the fckeditor packages.

For the stable distribution (squeeze), this problem has been fixed in
version 1:2.6.6-1squeeze1."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:ND");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:fckeditor");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/08/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/07");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"6.0", prefix:"fckeditor", reference:"1:2.6.6-1squeeze1")) flag++;

if (flag)
{
  if (report_verbosity &gt; 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

JSON Vulners Source

Initial Source

{"id": "DEBIAN_DSA-2522.NASL", "bulletinFamily": "scanner", "title": "Debian DSA-2522-1 : fckeditor - XSS", "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "published": "2012-08-07T00:00:00", "modified": "2018-11-10T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "reporter": "Tenable", "references": ["https://www.debian.org/security/2012/dsa-2522", "https://packages.debian.org/source/squeeze/fckeditor", "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "cvelist": ["CVE-2012-4000"], "type": "nessus", "lastseen": "2019-02-21T01:17:25", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "edition": 6, "enchantments": {"score": {"value": 4.3, "vector": "NONE"}}, "hash": "470c33d05c0dfa60ac2aba2feae50b3583a17e91f2a93053d2487fdf298df9e1", "hashmap": [{"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "78721cedb29127e9fbe66a226b9d7135", "key": "references"}, {"hash": "71d45760a5b15807f1db78c83f7d15dc", "key": "cpe"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "8c9e4d86e993c1a32b6c81005a226ac4", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "3c764d4cf584f9ded7aa4dcca57c78ff", "key": "modified"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}, {"hash": "9dbe2024fa003863600a9a445b7544ef", "key": "sourceData"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2018-11-11T13:03:37", "modified": "2018-11-10T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://www.debian.org/security/2012/dsa-2522", "https://packages.debian.org/source/squeeze/fckeditor", "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/11/10 11:49:35\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["description"], "edition": 6, "lastseen": "2018-11-11T13:03:37"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "edition": 3, "enchantments": {"score": {"value": 4.3, "vector": "NONE"}}, "hash": "864a969a24dd3267812eafefa51fd69b5184fba969d3aaa6888091d21c46cb08", "hashmap": [{"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "71d45760a5b15807f1db78c83f7d15dc", "key": "cpe"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "a78e1fcf08eb6bc1a5d97cb08771b9b1", "key": "sourceData"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "8c9e4d86e993c1a32b6c81005a226ac4", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "00c0dac0dbcf5b8159354cd4f0453d79", "key": "references"}, {"hash": "9dccd6ec7eaf3542a6857abb77bf5b62", "key": "modified"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2018-08-30T19:54:18", "modified": "2015-02-16T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://packages.debian.org/source/squeeze/fckeditor", "http://www.debian.org/security/2012/dsa-2522", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2015/02/16 15:37:38 $\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:54:18"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "edition": 5, "enchantments": {"score": {"value": 4.3, "vector": "NONE"}}, "hash": "d2882f4fd1640bca02539e867280b20e9feb3e20ac57576c4f8543e31f5d3e4b", "hashmap": [{"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "71d45760a5b15807f1db78c83f7d15dc", "key": "cpe"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "8c9e4d86e993c1a32b6c81005a226ac4", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "00c0dac0dbcf5b8159354cd4f0453d79", "key": "references"}, {"hash": "9dccd6ec7eaf3542a6857abb77bf5b62", "key": "modified"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}, {"hash": "9dbe2024fa003863600a9a445b7544ef", "key": "sourceData"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2018-11-11T08:40:50", "modified": "2015-02-16T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://packages.debian.org/source/squeeze/fckeditor", "http://www.debian.org/security/2012/dsa-2522", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/11/10 11:49:35\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["references", "modified"], "edition": 5, "lastseen": "2018-11-11T08:40:50"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.", "edition": 7, "enchantments": {"dependencies": {"modified": "2019-01-16T20:14:33", "references": [{"idList": ["CVE-2012-4000"], "type": "cve"}, {"idList": ["EDB-ID:37457"], "type": "exploitdb"}, {"idList": ["SECURITYVULNS:DOC:30848", "SECURITYVULNS:DOC:28368", "SECURITYVULNS:VULN:12511"], "type": "securityvulns"}, {"idList": ["OPENVAS:136141256231071499", "OPENVAS:71499"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-2522-1:47EAF"], "type": "debian"}, {"idList": ["PACKETSTORM:126902"], "type": "packetstorm"}]}, "score": {"value": 4.3, "vector": "NONE"}}, "hash": "2c7a3f0b4a362026cedf853ae5f70cc62624dd9cca5a982e3da61acc50cf4c34", "hashmap": [{"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "78721cedb29127e9fbe66a226b9d7135", "key": "references"}, {"hash": "71d45760a5b15807f1db78c83f7d15dc", "key": "cpe"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "3c764d4cf584f9ded7aa4dcca57c78ff", "key": "modified"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "806c61a6727b32b39ce1dff63e47cbcc", "key": "description"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}, {"hash": "9dbe2024fa003863600a9a445b7544ef", "key": "sourceData"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2019-01-16T20:14:33", "modified": "2018-11-10T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://www.debian.org/security/2012/dsa-2522", "https://packages.debian.org/source/squeeze/fckeditor", "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/11/10 11:49:35\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["description"], "edition": 7, "lastseen": "2019-01-16T20:14:33"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "edition": 1, "enchantments": {}, "hash": "fb7efdaaaf2db0786e7a9ee61d838030ace041e92e0718b687d031c4a759afd2", "hashmap": [{"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "a78e1fcf08eb6bc1a5d97cb08771b9b1", "key": "sourceData"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "8c9e4d86e993c1a32b6c81005a226ac4", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "00c0dac0dbcf5b8159354cd4f0453d79", "key": "references"}, {"hash": "9dccd6ec7eaf3542a6857abb77bf5b62", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2016-09-26T17:26:10", "modified": "2015-02-16T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.2", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://packages.debian.org/source/squeeze/fckeditor", "http://www.debian.org/security/2012/dsa-2522", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2015/02/16 15:37:38 $\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:26:10"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "edition": 4, "enchantments": {"score": {"value": 4.3, "vector": "NONE"}}, "hash": "9d6182317a35aca5955dc463cb2436dfcb879a6cd4ef374adaa8b3fe42213d37", "hashmap": [{"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "71d45760a5b15807f1db78c83f7d15dc", "key": "cpe"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "a78e1fcf08eb6bc1a5d97cb08771b9b1", "key": "sourceData"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "8c9e4d86e993c1a32b6c81005a226ac4", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "00c0dac0dbcf5b8159354cd4f0453d79", "key": "references"}, {"hash": "9dccd6ec7eaf3542a6857abb77bf5b62", "key": "modified"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2018-09-02T00:04:30", "modified": "2015-02-16T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://packages.debian.org/source/squeeze/fckeditor", "http://www.debian.org/security/2012/dsa-2522", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2015/02/16 15:37:38 $\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["sourceData"], "edition": 4, "lastseen": "2018-09-02T00:04:30"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "cvelist": ["CVE-2012-4000"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Emilio Pinna discovered a cross site scripting vulnerability in the spellchecker.php page of FCKeditor, a popular HTML/DHTML editor for the web.", "edition": 2, "enchantments": {"score": {"value": 4.3, "vector": "NONE"}}, "hash": "9d6182317a35aca5955dc463cb2436dfcb879a6cd4ef374adaa8b3fe42213d37", "hashmap": [{"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "f959792d4e4ae19fab8b7537a97eac5d", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "71d45760a5b15807f1db78c83f7d15dc", "key": "cpe"}, {"hash": "4c2a4e298b4b51225f59b0852bbb0d74", "key": "published"}, {"hash": "d8d9e33e659c22f27fa05b85ab06dc9f", "key": "href"}, {"hash": "a78e1fcf08eb6bc1a5d97cb08771b9b1", "key": "sourceData"}, {"hash": "e2c8c3ba9908e6476e6fb59366408c09", "key": "pluginID"}, {"hash": "8c9e4d86e993c1a32b6c81005a226ac4", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "91fb4925e7b3ece9ca7b7a0332145966", "key": "cvelist"}, {"hash": "00c0dac0dbcf5b8159354cd4f0453d79", "key": "references"}, {"hash": "9dccd6ec7eaf3542a6857abb77bf5b62", "key": "modified"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=61438", "id": "DEBIAN_DSA-2522.NASL", "lastseen": "2017-10-29T13:43:50", "modified": "2015-02-16T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "61438", "published": "2012-08-07T00:00:00", "references": ["https://packages.debian.org/source/squeeze/fckeditor", "http://www.debian.org/security/2012/dsa-2522", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2015/02/16 15:37:38 $\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DSA-2522-1 : fckeditor - XSS", "type": "nessus", "viewCount": 1}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2017-10-29T13:43:50"}], "edition": 8, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "71d45760a5b15807f1db78c83f7d15dc"}, {"key": "cvelist", "hash": "91fb4925e7b3ece9ca7b7a0332145966"}, {"key": "cvss", "hash": "6e9bdd2021503689a2ad9254c9cdf2b3"}, {"key": "description", "hash": "8c9e4d86e993c1a32b6c81005a226ac4"}, {"key": "href", "hash": "d8d9e33e659c22f27fa05b85ab06dc9f"}, {"key": "modified", "hash": "3c764d4cf584f9ded7aa4dcca57c78ff"}, {"key": "naslFamily", "hash": "74562d71b087df9eabd0c21f99b132cc"}, {"key": "pluginID", "hash": "e2c8c3ba9908e6476e6fb59366408c09"}, {"key": "published", "hash": "4c2a4e298b4b51225f59b0852bbb0d74"}, {"key": "references", "hash": "78721cedb29127e9fbe66a226b9d7135"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "9dbe2024fa003863600a9a445b7544ef"}, {"key": "title", "hash": "f959792d4e4ae19fab8b7537a97eac5d"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "470c33d05c0dfa60ac2aba2feae50b3583a17e91f2a93053d2487fdf298df9e1", "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2012-4000"]}, {"type": "openvas", "idList": ["OPENVAS:71499", "OPENVAS:136141256231071499"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30848", "SECURITYVULNS:DOC:28368", "SECURITYVULNS:VULN:12511"]}, {"type": "exploitdb", "idList": ["EDB-ID:37457"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126902"]}, {"type": "debian", "idList": ["DEBIAN:DSA-2522-1:47EAF"]}], "modified": "2019-02-21T01:17:25"}, "score": {"value": 4.4, "vector": "NONE", "modified": "2019-02-21T01:17:25"}, "vulnersScore": 4.4}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2522. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61438);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/11/10 11:49:35\");\n\n script_cve_id(\"CVE-2012-4000\");\n script_bugtraq_id(54188);\n script_xref(name:\"DSA\", value:\"2522\");\n\n script_name(english:\"Debian DSA-2522-1 : fckeditor - XSS\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular HTML/DHTML editor for\nthe web.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/fckeditor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2012/dsa-2522\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the fckeditor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:fckeditor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"fckeditor\", reference:\"1:2.6.6-1squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "pluginID": "61438", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:fckeditor"], "scheme": null}

{"cve": [{"lastseen": "2019-05-29T18:12:24", "bulletinFamily": "NVD", "description": "Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.", "modified": "2017-08-29T01:32:00", "id": "CVE-2012-4000", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4000", "published": "2012-07-12T21:55:00", "title": "CVE-2012-4000", "type": "cve", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}}], "exploitdb": [{"lastseen": "2016-02-04T05:52:52", "bulletinFamily": "exploit", "description": "FCKEditor 'spellchecker.php' Cross Site Scripting Vulnerability. CVE-2012-4000. Webapps exploit for php platform", "modified": "2012-06-25T00:00:00", "published": "2012-06-25T00:00:00", "id": "EDB-ID:37457", "href": "https://www.exploit-db.com/exploits/37457/", "type": "exploitdb", "title": "FCKEditor Core - Editor - 'spellchecker.php' Cross Site Scripting Vulnerability", "sourceData": "source: http://www.securityfocus.com/bid/54188/info\r\n\r\nFCKEditor is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input.\r\n\r\nAn attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.\r\n\r\nFCKEditor 2.6.7 is vulnerable; prior versions may also be affected. \r\n\r\n<html> <body> <iframe style=\"width: 1px; height: 1px; visibility: hidden\" name=\"hidden\"></iframe> <form method=\"post\" name=\"sender\" action=\"http://www.example.com/fckeditor/editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php\"; target=\"hidden\"> <input type=\"hidden\" name=\"textinputs[]\" value='\");alert(\"THIS SITE IS XSS VULNERABLE!\");</script><!--' /> </form> </body> <script>document.sender.submit(); </script> </html>\r\n\r\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "sourceHref": "https://www.exploit-db.com/download/37457/"}], "openvas": [{"lastseen": "2017-07-24T12:51:03", "bulletinFamily": "scanner", "description": "The remote host is missing an update to fckeditor\nannounced via advisory DSA 2522-1.", "modified": "2017-07-07T00:00:00", "published": "2012-08-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=71499", "id": "OPENVAS:71499", "title": "Debian Security Advisory DSA 2522-1 (fckeditor)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2522_1.nasl 6612 2017-07-07 12:08:03Z cfischer $\n# Description: Auto-generated from advisory DSA 2522-1 (fckeditor)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular html/text editor for the web.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\n\nFor the testing distribution (wheezy), this problem has been fixed in\nversion 1:2.6.6-3.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 1:2.6.6-3.\n\nWe recommend that you upgrade your fckeditor packages.\";\ntag_summary = \"The remote host is missing an update to fckeditor\nannounced via advisory DSA 2522-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202522-1\";\n\nif(description)\n{\n script_id(71499);\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_cve_id(\"CVE-2012-4000\");\n script_version(\"$Revision: 6612 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:08:03 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-10 03:20:46 -0400 (Fri, 10 Aug 2012)\");\n script_name(\"Debian Security Advisory DSA 2522-1 (fckeditor)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"fckeditor\", ver:\"1:2.6.6-1squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"fckeditor\", ver:\"1:2.6.6-3\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2019-05-29T18:38:41", "bulletinFamily": "scanner", "description": "The remote host is missing an update to fckeditor\nannounced via advisory DSA 2522-1.", "modified": "2019-03-18T00:00:00", "published": "2012-08-10T00:00:00", "id": "OPENVAS:136141256231071499", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231071499", "title": "Debian Security Advisory DSA 2522-1 (fckeditor)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2522_1.nasl 14275 2019-03-18 14:39:45Z cfischer $\n# Description: Auto-generated from advisory DSA 2522-1 (fckeditor)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.71499\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_cve_id(\"CVE-2012-4000\");\n script_version(\"$Revision: 14275 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-18 15:39:45 +0100 (Mon, 18 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-10 03:20:46 -0400 (Fri, 10 Aug 2012)\");\n script_name(\"Debian Security Advisory DSA 2522-1 (fckeditor)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB(6|7)\");\n script_xref(name:\"URL\", value:\"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202522-1\");\n script_tag(name:\"insight\", value:\"Emilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular html/text editor for the web.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\n\nFor the testing distribution (wheezy), this problem has been fixed in\nversion 1:2.6.6-3.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 1:2.6.6-3.\");\n\n script_tag(name:\"solution\", value:\"We recommend that you upgrade your fckeditor packages.\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update to fckeditor\nannounced via advisory DSA 2522-1.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"fckeditor\", ver:\"1:2.6.6-1squeeze1\", rls:\"DEB6\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"fckeditor\", ver:\"1:2.6.6-3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:52", "bulletinFamily": "software", "description": "\r\n\r\nClass\t\tCross-Site Scripting\r\nRemote\tYes\r\nPublished\t2nd June 2014\r\nCredit\t\tRobin Bailey of Dionach (vulns@dionach.com)\r\nVulnerable\tFCKeditor <= 2.6.10\r\n\r\nFCKeditor is prone to a reflected cross-site scripting (XSS) vulnerability due to inadequately sanitised user input. An attacker may leverage this issue to run JavaScript in the context of a victim's browser.\r\n\r\nFCKeditor 2.6.10 is known to be vulnerable; older versions may also be vulnerable. \r\n\r\nNote that this issue is related to CVE-2012-4000, which was a cross-site scripting vulnerability in the values of the textinputs[] array passed to the spellchecker.php page. To resolve this issue the values of this array were encoded with htmlspecialchars() before being output to the page; however the array keys were still echoed unencoded.\r\n\r\nPoC:\r\n\r\nPOST http://[target]/editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php\r\ntextinputs[1</script><script>alert(document.cookie);//</script>]=zz\r\n\r\nThe vendor was notified of this issue, and FCKeditor 2.6.11 was released to address this vulnerability. See the following vendor announcement:\r\n\r\nhttp://ckeditor.com/blog/FCKeditor-2.6.11-Released\r\n\r\nTimeline:\r\n\r\n28/05/2014\tVulnerability identified\r\n28/05/2014\tInitial vendor contact\r\n28/05/2014\tVendor response to contact\r\n28/05/2014\tVulnerability disclosed to vendor\r\n29/05/2014\tVendor confirms vulnerability\r\n02/06/2014\tVendor releases patch\r\n02/06/2014\tPublic disclosure of vulnerability\r\n\r\n______________________________________________________________________\r\n\r\nDisclaimer: This e-mail and any attachments are confidential.\r\n\r\nIt may contain privileged information and is intended for the named\r\naddressee(s) only. It must not be distributed without Dionach Ltd consent.\r\nIf you are not the intended recipient, please notify the sender immediately and destroy this e-mail. \r\n\r\nAny unauthorised copying, disclosure or distribution of the material in this e-mail is strictly forbidden. Unless expressly stated, opinions in this e-mail are those of the individual sender, and not of Dionach Ltd.\r\n\r\nDionach Ltd, Greenford House, London Road, Wheatley, Oxford OX33 1JH Company Registration No. 03908168, VAT No. GB750661242\r\n\r\n______________________________________________________________________\r\n\r\n", "modified": "2014-06-14T00:00:00", "published": "2014-06-14T00:00:00", "id": "SECURITYVULNS:DOC:30848", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30848", "title": "FCKedtior 2.6.10 Reflected Cross-Site Scripting (XSS)", "type": "securityvulns", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-08-31T11:10:45", "bulletinFamily": "software", "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA512\r\n\r\n\r\n- -------------------------------------------------------------------------\r\nDebian Security Advisory DSA-2522-1 security@debian.org\r\nhttp://www.debian.org/security/ Yves-Alexis Perez\r\nAugust 05, 2012 http://www.debian.org/security/faq\r\n- -------------------------------------------------------------------------\r\n\r\nPackage : fckeditor\r\nVulnerability : cross site scripting\r\nProblem type : remote\r\nDebian-specific: no\r\nCVE ID : CVE-2012-4000\r\nDebian Bug : 683418\r\n\r\nEmilio Pinna discovered a cross site scripting vulnerability in the\r\nspellchecker.php page of FCKeditor, a popular html/text editor for the web.\r\n\r\nFor the stable distribution (squeeze), this problem has been fixed in\r\nversion 1:2.6.6-1squeeze1.\r\n\r\nFor the testing distribution (wheezy), this problem has been fixed in\r\nversion 1:2.6.6-3.\r\n\r\nFor the unstable distribution (sid), this problem has been fixed in\r\nversion 1:2.6.6-3.\r\n\r\nWe recommend that you upgrade your fckeditor packages.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: http://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n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\r\n1kY5sLaI9j1nsx8QPftT\r\n=rOo8\r\n-----END PGP SIGNATURE-----\r\n", "modified": "2012-08-13T00:00:00", "published": "2012-08-13T00:00:00", "id": "SECURITYVULNS:DOC:28368", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28368", "title": "[SECURITY] [DSA 2522-1] fckeditor security update", "type": "securityvulns", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-08-31T11:09:48", "bulletinFamily": "software", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "modified": "2012-08-13T00:00:00", "published": "2012-08-13T00:00:00", "id": "SECURITYVULNS:VULN:12511", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12511", "title": "Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "type": "securityvulns", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "packetstorm": [{"lastseen": "2016-12-05T22:13:57", "bulletinFamily": "exploit", "description": "", "modified": "2014-06-03T00:00:00", "published": "2014-06-03T00:00:00", "href": "https://packetstormsecurity.com/files/126902/FCKeditor-2.6.10-Cross-Site-Scripting.html", "id": "PACKETSTORM:126902", "type": "packetstorm", "title": "FCKeditor 2.6.10 Cross Site Scripting", "sourceData": "`Class Cross-Site Scripting \nRemote Yes \nPublished 2nd June 2014 \nCredit Robin Bailey of Dionach (vulns@dionach.com) \nVulnerable FCKeditor <= 2.6.10 \n \nFCKeditor is prone to a reflected cross-site scripting (XSS) vulnerability due to inadequately sanitised user input. An attacker may leverage this issue to run JavaScript in the context of a victim's browser. \n \nFCKeditor 2.6.10 is known to be vulnerable; older versions may also be vulnerable. \n \nNote that this issue is related to CVE-2012-4000, which was a cross-site scripting vulnerability in the values of the textinputs[] array passed to the spellchecker.php page. To resolve this issue the values of this array were encoded with htmlspecialchars() before being output to the page; however the array keys were still echoed unencoded. \n \nPoC: \n \nPOST http://[target]/editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php \ntextinputs[1</script><script>alert(document.cookie);//</script>]=zz \n \nThe vendor was notified of this issue, and FCKeditor 2.6.11 was released to address this vulnerability. See the following vendor announcement: \n \nhttp://ckeditor.com/blog/FCKeditor-2.6.11-Released \n \nTimeline: \n \n28/05/2014 Vulnerability identified \n28/05/2014 Initial vendor contact \n28/05/2014 Vendor response to contact \n28/05/2014 Vulnerability disclosed to vendor \n29/05/2014 Vendor confirms vulnerability \n02/06/2014 Vendor releases patch \n02/06/2014 Public disclosure of vulnerability \n \n______________________________________________________________________ \n \nDisclaimer: This e-mail and any attachments are confidential. \n \nIt may contain privileged information and is intended for the named \naddressee(s) only. It must not be distributed without Dionach Ltd consent. \nIf you are not the intended recipient, please notify the sender immediately and destroy this e-mail. \n \nAny unauthorised copying, disclosure or distribution of the material in this e-mail is strictly forbidden. Unless expressly stated, opinions in this e-mail are those of the individual sender, and not of Dionach Ltd. \n \nDionach Ltd, Greenford House, London Road, Wheatley, Oxford OX33 1JH Company Registration No. 03908168, VAT No. GB750661242 \n \n______________________________________________________________________ \n`\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "sourceHref": "https://packetstormsecurity.com/files/download/126902/fckeditor2610-xss.txt"}], "debian": [{"lastseen": "2019-05-30T02:22:36", "bulletinFamily": "unix", "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2522-1 security@debian.org\nhttp://www.debian.org/security/ Yves-Alexis Perez\nAugust 05, 2012 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : fckeditor\nVulnerability : cross site scripting\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2012-4000\nDebian Bug : 683418\n\nEmilio Pinna discovered a cross site scripting vulnerability in the\nspellchecker.php page of FCKeditor, a popular html/text editor for the web.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:2.6.6-1squeeze1.\n\nFor the testing distribution (wheezy), this problem has been fixed in\nversion 1:2.6.6-3.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 1:2.6.6-3.\n\nWe recommend that you upgrade your fckeditor packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "modified": "2012-08-06T08:23:17", "published": "2012-08-06T08:23:17", "id": "DEBIAN:DSA-2522-1:47EAF", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2012/msg00163.html", "title": "[SECURITY] [DSA 2522-1] fckeditor security update", "type": "debian", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}}]}