CVE-2012-2909

N/A Unknown
Published: May 21, 2012 Modified: April 29, 2026
View on NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) text field in the Private Messages System, (2) Bad Word field in Zensur, or (3) Portal or (4) Topic field in Kommentar.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://www.exploit-db.com/exploits/18873
Source: cve@mitre.org
Exploit
http://www.securityfocus.com/bid/53496
Source: cve@mitre.org
Exploit
http://www.vulnerability-lab.com/get_content.php?id=525
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/75577
Source: cve@mitre.org
http://www.exploit-db.com/exploits/18873
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.securityfocus.com/bid/53496
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.vulnerability-lab.com/get_content.php?id=525
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/75577
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
1.6%
73th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-79

Affected Vendors

viscacha

Related CVEs

CVE-2026-9677 N/A
CVE-2026-13245 6.1
CVE-2026-12404 5.3
CVE-2026-10820 N/A
CVE-2026-12415 9.8