Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-4000
HistoryJul 12, 2012 - 12:00 a.m.

CVE-2012-4000

2012-07-1200:00:00
ubuntu.com
ubuntu.com
7

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.0%

Cross-site scripting (XSS) vulnerability in the print_textinputs_var
function in
editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php
in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary
web script or HTML via textinputs array parameters.

OSVersionArchitecturePackageVersionFilename
ubuntu11.04noarchfckeditor< 1:2.6.6-1squeeze1build0.11.04.1UNKNOWN
ubuntu11.10noarchfckeditor< 1:2.6.6-1squeeze1build0.11.10.1UNKNOWN
ubuntu12.04noarchfckeditor< 1:2.6.6-1squeeze1build0.12.04.1UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.0%

Related for UB:CVE-2012-4000