Описание
classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| tinymce | not-affected | package | ||
| wordpress | fixed | 3.5.1+dfsg-2 | package | |
| moodle | fixed | 2.5-1 | package | |
| wordpress | fixed | 3.5.2+dfsg-1~deb6u1 | squeeze | package |
| moodle | not-affected | squeeze | package | |
| wordpress | fixed | 3.5.2+dfsg-1~deb7u1 | wheezy | package |
| moodle | fixed | 2.2.3.dfsg-2.6~wheezy2 | wheezy | package |
Примечания
http://www.tinymce.com/develop/changelog/?type=phpspell
patch: https://github.com/tinymce/tinymce_spellchecker_php/commit/22910187bfb9edae90c26e10100d8145b505b974
http://www.tinymce.com/forum/viewtopic.php?id=30036
EPSS
Связанные уязвимости
classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string.
classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string.
PHP Spellchecker addon for TinyMCE allows attackers to trigger arbitrary outbound HTTP requests
EPSS