CVE-2012-6550
Zeroclipboard < 1.0.7 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vulnerability than CVE-2013-1808.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by MustLive · textwebappsphp
https://www.exploit-db.com/exploits/38329
Scores
EPSS
0.0408
EPSS Percentile
88.4%
Classification
CWE
CWE-79
Status
draft
Affected Products (2)
zeroclipboard_project/zeroclipboard
< 1.0.7
zeroclipboard_project/zeroclipboard
Timeline
Published
Apr 02, 2013
Tracked Since
Feb 18, 2026