Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6642)

Description

Cross-site scripting (XSS) vulnerability in ClipBucket 2.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter to view_channel.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Remediation

References

Related Vulnerabilities

TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1607)

WordPress Plugin Social Login Lite For WooCommerce Security Bypass (1.6.0)

Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-35652)

WebLogic CVE-2024-20931 Vulnerability (CVE-2024-20931)

MySQL CVE-2020-14769 Vulnerability (CVE-2020-14769)

Severity

Medium

Classification

CVE-2012-6642 CWE-707

Tags

Missing Update Known Vulnerabilities