VYPR

Cute Editor

by Cutesoft Components

CVEs (2)

  • CVE-2021-47751Jan 13, 2026
    risk 0.00cvss epss 0.01

    CuteEditor for PHP (now referred to as Rich Text Editor) 6.6 contains a directory traversal vulnerability in the browse template feature that allows attackers to write files to arbitrary web root directories. Attackers can exploit the ServerMapPath() function by renaming…

  • CVE-2012-2985Aug 21, 2012
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.