Vulnerabilities > Cutesoft Components
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-08-21 | CVE-2012-2985 | Cross-Site Scripting vulnerability in Cutesoft Components Cute Editor 6.4 Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter. | 3.5 |
2010-03-05 | CVE-2009-4665 | Path Traversal vulnerability in Cutesoft Components Cute Editor FOR Asp.Net Directory traversal vulnerability in CuteSoft_Client/CuteEditor/Load.ashx in CuteSoft Components Cute Editor for ASP.NET allows remote attackers to read arbitrary files via a .. | 5.0 |