Lucene search
K
CkeditorFckeditor

4 matches found

CVE
CVE
added 2012/09/05 12:0 a.m.76 views

CVE-2012-2067

The CVE-2012-2067 entry covers Drupal CKEditor/FCKeditor modules (CKEditor 6.x-1.x before 6.x-1.9; CKEditor 7.x-1.x before 7.x-1.7; FCKeditor 6.x-2.x before 6.x-2.3) when the core PHP module is enabled. The root cause is an improper handling in the text filter parameter that allows remote authent...

6.8CVSS7.5AI score0.0153EPSS
CVE
CVE
added 2012/07/12 9:0 p.m.74 views

CVE-2012-4000

CVE-2012-4000 is a cross-site scripting vulnerability in the FCKeditor spellchecker PHP path. The issue affects FCKeditor 2.6.7 and earlier, where the print_textinputs_var function processes the textinputs[] parameters in spellchecker.php, allowing a remote attacker to inject arbitrary script/HTM...

4.3CVSS6.7AI score0.04251EPSS
Web
CVE
CVE
added 2014/06/11 2:0 p.m.64 views

CVE-2014-4037

Technical details for CVE-2014-4037 are not publicly available in the provided connected documents. The materials only reference the vulnerability in general terms without product/version specifics or remediation. Monitor for updates from official advisories.

4.3CVSS6.8AI score0.02872EPSS
Web
CVE
CVE
added 2012/09/05 12:0 a.m.62 views

CVE-2012-2066

CVE-2012-2066 is a cross-site scripting (XSS) vulnerability affecting Drupal contributed editor modules: FCKeditor 6.x-2.x before 6.x-2.3, CKEditor 6.x-1.x before 6.x-1.9, and CKEditor 7.x-1.x before 7.x-1.7. The issue allows remote authenticated users or remote attackers to inject arbitrary scri...

4.3CVSS5.5AI score0.01357EPSS