Unrated severityNVD Advisory· Published Jul 3, 2012· Updated Apr 29, 2026
CVE-2012-3832
CVE-2012-3832
Description
Cross-site scripting (XSS) vulnerability in decoda/Decoda.php in Decoda before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to (1) b or (2) div tags.
Affected products
10cpe:2.3:a:milesj:decoda:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:milesj:decoda:*:*:*:*:*:*:*:*range: <=3.1
- cpe:2.3:a:milesj:decoda:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:2.9:*:*:*:*:*:*:*
- cpe:2.3:a:milesj:decoda:3.0:*:*:*:*:*:*:*
Patches
16f2b9fb48bc1https://github.com/milesj/php-decodavia nvd-ref
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
1News mentions
0No linked articles in our index yet.