Description
Cross site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.
Remediation
Upgrade to the latest version of FCKeditor.
References
Related Vulnerabilities
MySQL CVE-2016-0665 Vulnerability (CVE-2016-0665)
MySQL CVE-2023-22064 Vulnerability (CVE-2023-22064)
WordPress Plugin Easy Panorama Cross-Site Scripting (1.1.4)
WordPress Plugin Code Snippets Cross-Site Scripting (2.6.1)
WordPress Plugin Affiliate Ads for Clickbank Products Cross-Site Scripting (1.6)