CVE-2020-24903

Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scripting XSS caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the...

EUVD-2020-17611

Malware in sbrugna...

CVE-2012-2985

Cross-site scripting XSS vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the UploadID parameter...

CuteSoft Cute Editor Cross-Site Scripting Vulnerability

CuteSoft Cute Editor is a U.S. CuteSoft company can be used to edit PHP and ASP HTML editor. A cross-site scripting vulnerability exists in Cute Editor for ASP.NET version 6.4, which allows remote attackers to execute scripts in the victim's web browser using specially crafted URLs...

CVE-2020-24903

Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scripting XSS caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the...

CVE-2020-24903

Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scripting XSS caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the...

Cross site scripting

Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scripting XSS caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the...

CVE-2020-24903

Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scripting XSS caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the...

CVE-2020-24903

The CVE-2020-24903 issue affects Cute Editor for ASP.NET 6.4, with a reflected XSS vulnerability caused by improper validation of user-supplied input. An attacker can craft a URL that, when clicked by a user, executes scripts in the victim’s browser within the site’s context and may steal cookie-...

CuteSoft Cute Editor 跨站脚本漏洞

CuteSoft Cute Editor is a U.S. CuteSoft company can be used to edit PHP and ASP HTML editor. A cross-site scripting vulnerability exists in Cute Editor for ASP.NET version 6.4, which allows remote attackers to execute scripts in the victim's web browser using specially crafted URLs...

Cross site scripting

Cross-site scripting XSS vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the UploadID parameter...

CVE-2012-2985

CVE-2012-2985 is an XSS in CuteSoft Cute Editor 6.4’s InsertDocument.aspx where the GET/POST parameter _UploadID lets remote authenticated users inject script/HTML. The vulnerability is indicated by multiple sources (NVD, Red Hat, CVE lists, CERT entry), all describing a reflected XSS with potent...

CVE-2012-2985

Cross-site scripting XSS vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the UploadID parameter...

CuteSoft Cute Editor 6.4 reflected cross site scripting

Overview CuteSoft Cute Editor 6.4, and possibly other verions, contains a reflected cross-site scripting XSS CWE-79 vulnerability. Description CuteSoft Cute Editor 6.4 has been reported to contain a reflected cross-site scripting XSS CWE-79 vulnerability. The GET request parameter called UploadID...

Directory traversal

Directory traversal vulnerability in CuteSoftClient/CuteEditor/Load.ashx in CuteSoft Components Cute Editor for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2009-4665

Directory traversal vulnerability in CuteSoftClient/CuteEditor/Load.ashx in CuteSoft Components Cute Editor for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2009-4665

Directory traversal vulnerability in CuteSoftClient/CuteEditor/Load.ashx in CuteSoft Components Cute Editor for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2009-4665

CVE-2009-4665 affects CuteSoft Components Cute Editor for ASP.NET. Affected component: CuteSoft_Client/CuteEditor/Load.ashx. Vulnerability type: directory traversal via the file parameter using a .. payload, enabling reading of arbitrary files. Base CVSS v2 score 5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N) ...

Cute Editor ASP.NET Remote File Disclosure Vulnerability

No description provided by source. Securitylab.ir Application Info: Name: Cute Editor Version: ASP.NET Website: http://cutesoft.net Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Remote File Download...

Cute Editor ASP.NET - Remote File Disclosure

Securitylab.ir Application Info: Name: Cute Editor Version: ASP.NET Website: http://cutesoft.net Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Remote File Download Risk: Medium Dork:...