Vulnerabilities > Cutesoft Components > Cute Editor
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-08-21 | CVE-2012-2985 | Cross-Site Scripting vulnerability in Cutesoft Components Cute Editor 6.4 Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter. | 3.5 |