cvelist/2012/6xxx/CVE-2012-6112.json

{
    "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2012-6112",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://github.com/tinymce/tinymce_spellchecker_php/commit/22910187bfb9edae90c26e10100d8145b505b974",
                "refsource": "CONFIRM",
                "url": "https://github.com/tinymce/tinymce_spellchecker_php/commit/22910187bfb9edae90c26e10100d8145b505b974"
            },
            {
                "name": "http://www.tinymce.com/forum/viewtopic.php?id=30036",
                "refsource": "CONFIRM",
                "url": "http://www.tinymce.com/forum/viewtopic.php?id=30036"
            },
            {
                "name": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37283",
                "refsource": "CONFIRM",
                "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37283"
            },
            {
                "name": "http://www.tinymce.com/develop/changelog/?type=phpspell",
                "refsource": "CONFIRM",
                "url": "http://www.tinymce.com/develop/changelog/?type=phpspell"
            },
            {
                "name": "[oss-security] 20130121 Moodle security notifications public",
                "refsource": "MLIST",
                "url": "http://openwall.com/lists/oss-security/2013/01/21/1"
            },
            {
                "name": "https://moodle.org/mod/forum/discuss.php?d=220157",
                "refsource": "CONFIRM",
                "url": "https://moodle.org/mod/forum/discuss.php?d=220157"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 00:47:02 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "secalert@redhat.com",`
			`"ID": "CVE-2012-6112",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "n/a",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "n/a"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "n/a"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 00:47:02 +00:00			`"lang": "eng",`
			`"value": "classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string."`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`}`
"-Synchronized-Data." 2019-03-18 00:47:02 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "n/a"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://github.com/tinymce/tinymce_spellchecker_php/commit/22910187bfb9edae90c26e10100d8145b505b974",`
			`"refsource": "CONFIRM",`
			`"url": "https://github.com/tinymce/tinymce_spellchecker_php/commit/22910187bfb9edae90c26e10100d8145b505b974"`
			`},`
			`{`
			`"name": "http://www.tinymce.com/forum/viewtopic.php?id=30036",`
			`"refsource": "CONFIRM",`
			`"url": "http://www.tinymce.com/forum/viewtopic.php?id=30036"`
			`},`
			`{`
			`"name": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37283",`
			`"refsource": "CONFIRM",`
			`"url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37283"`
			`},`
			`{`
			`"name": "http://www.tinymce.com/develop/changelog/?type=phpspell",`
			`"refsource": "CONFIRM",`
			`"url": "http://www.tinymce.com/develop/changelog/?type=phpspell"`
			`},`
			`{`
			`"name": "[oss-security] 20130121 Moodle security notifications public",`
			`"refsource": "MLIST",`
			`"url": "http://openwall.com/lists/oss-security/2013/01/21/1"`
			`},`
			`{`
			`"name": "https://moodle.org/mod/forum/discuss.php?d=220157",`
			`"refsource": "CONFIRM",`
			`"url": "https://moodle.org/mod/forum/discuss.php?d=220157"`
			`}`
			`]`
			`}`
			`}`