7 matches found
Fedora 21 : zarafa-7.1.14-1.fc21 (2015-a275fd68f2)
Zarafa Collaboration Platform 7.1.14 final 51822 ================================================== - ZCP-13581: update fck- editor for webaccess to solve CVE-2012-4000 - ZCP-13572: CVE-2015-6566 - zarafa-autorespond suffers from a potential local privilege escalation - ZCP-13087: Meeting request...
FCKedtior 2.6.10 Reflected Cross-Site Scripting (XSS)
Class Cross-Site Scripting Remote Yes Published 2nd June 2014 Credit Robin Bailey of Dionach [email protected] Vulnerable FCKeditor = 2.6.10 FCKeditor is prone to a reflected cross-site scripting XSS vulnerability due to inadequately sanitised user input. An attacker may leverage this issue to ru...
FCKeditor 2.6.10 Cross Site Scripting
Class Cross-Site Scripting Remote Yes Published 2nd June 2014 Credit Robin Bailey of Dionach [email protected] Vulnerable FCKeditor alertdocument.cookie;//=zz The vendor was notified of this issue, and FCKeditor 2.6.11 was released to address this vulnerability. See the following vendor...
[SECURITY] [DSA 2522-1] fckeditor security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2522-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez August 05, 2012 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2522-1 (fckeditor)
The remote host is missing an update to fckeditor announced via advisory DSA 2522-1. OpenVAS Vulnerability Test $Id: deb25221.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2522-1 fckeditor Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
CVE-2012-4000
Cross-site scripting XSS vulnerability in the printtextinputsvar function in editor/dialog/fckspellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters...
CVE-2012-4000
CVE-2012-4000 is a cross-site scripting vulnerability in the FCKeditor spellchecker PHP path. The issue affects FCKeditor 2.6.7 and earlier, where the print_textinputs_var function processes the textinputs[] parameters in spellchecker.php, allowing a remote attacker to inject arbitrary script/HTM...