Описание
Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:2.6.6-3 |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| natty | released | 1:2.6.6-1squeeze1build0.11.04.1 |
| oneiric | released | 1:2.6.6-1squeeze1build0.11.10.1 |
| precise | released | 1:2.6.6-1squeeze1build0.12.04.1 |
| quantal | not-affected | 1:2.6.6-3 |
| raring | not-affected | 1:2.6.6-3 |
| saucy | not-affected | 1:2.6.6-3 |
| upstream | released | 1:2.6.6-3 |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.
Cross-site scripting (XSS) vulnerability in the print_textinputs_var f ...
Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить целостность защищаемой информации
4.3 Medium
CVSS2