thr3ads.net - Secure testing commits - [Secure-testing-commits] r19842

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Yves-Alexis Perez

2012-Jul-31 19:01 UTC

[Secure-testing-commits] r19842 - data/CVE

Author: corsac
Date: 2012-07-31 19:01:25 +0000 (Tue, 31 Jul 2012)
New Revision: 19842

Modified:
   data/CVE/list
Log:
add CVE for fckeditor


Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-07-31 18:59:06 UTC (rev 19841)
+++ data/CVE/list	2012-07-31 19:01:25 UTC (rev 19842)
@@ -161,7 +161,8 @@
 CVE-2012-4001
 	RESERVED
 CVE-2012-4000 (Cross-site scripting (XSS) vulnerability in the
print_textinputs_var ...)
-	TODO: check
+	- fckeditor <unfixed> (bug #683418)
+	NOTE: http://disse.cting.org/2012/06/22/fckeditor-reflected-xss-vulnerability/
 CVE-2012-3999 (Cross-site scripting (XSS) vulnerability in admin/login.php in
Sticky ...)
 	NOT-FOR-US: Sticky Notes
 CVE-2012-3998 (Multiple SQL injection vulnerabilities in Sticky Notes before
...)

Secure testing commits - Jul 2012 - r19842 - data/CVE

[Secure-testing-commits] r19842 - data/CVE