Security Advisory

CVE-2012-4000

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-07-12 21:00:00
Last updated 2024-08-06 20:21:04
Assigner mitre
State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.