CVE-2012-2985
CuteSoft Cute Editor 6.4 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.
Scores
EPSS
0.0050
EPSS Percentile
65.7%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
cutesoft_components/cute_editor
n/a/n/a
Timeline
Published
Aug 21, 2012
Tracked Since
Feb 18, 2026