VYPR
Unrated severityNVD Advisory· Published Jan 24, 2013· Updated Jun 16, 2026

CVE-2012-6517

CVE-2012-6517

Description

Multiple cross-site scripting (XSS) vulnerabilities in DiY-CMS 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) question parameter to in /modules/poll/add.php or (2) question or (3) answer parameter to modules/poll/edit.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Diy CMS/Diy CMS2 versions
    cpe:2.3:a:diy-cms:diy-cms:1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:diy-cms:diy-cms:1.0:*:*:*:*:*:*:*
    • (no CPE)range: 1.0

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.