{"vulnerability": "cve-2012-3414", "sightings": [{"uuid": "e9a4522b-769a-47ad-9cb1-b1b232c5ee04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2012-3414", "type": "seen", "source": "https://t.me/arpsyndicate/1761", "content": "#ExploitObserverAlert\n\nCVE-2012-2399\n\nDESCRIPTION: Exploit Observer has 17 entries related to CVE-2012-2399. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a different vulnerability than CVE-2012-3414.\n\nFIRST-EPSS: 0.014630000\nNVD-IS: 10.0\nNVD-ES: 10.0", "creation_timestamp": "2023-12-11T15:01:35.000000Z"}, {"uuid": "06822070-374f-4f8e-b7f7-e0e163ca80c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "db99543d-496c-4eef-ad0a-2df2093364df", "vulnerability": "CVE-2012-3414", "type": "confirmed", "source": "https://www.exploit-db.com/exploits/37470", "content": "", "creation_timestamp": "2012-06-29T00:00:00.000000Z"}, {"uuid": "b4224fe7-db81-4bad-b116-2220efb69122", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2012-3414", "type": "seen", "source": "https://t.me/arpsyndicate/1733", "content": "#ExploitObserverAlert\n\nCVE-2012-3414\n\nDESCRIPTION: Exploit Observer has 10 entries related to CVE-2012-3414. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, TinyMCE Image Manager 1.1, and other products, allows remote attackers to inject arbitrary web script or HTML via the movieName parameter, related to the \"ExternalInterface.call\" function.\n\nFIRST-EPSS: 0.034160000\nNVD-IS: 2.9\nNVD-ES: 8.6", "creation_timestamp": "2023-12-11T12:32:52.000000Z"}, {"uuid": "ca6c66bd-a68c-4a9a-a7cd-e23910b8216e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2012-3414", "type": "seen", "source": "https://t.me/VulnerabilityNews/28823", "content": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-3414. Reason: This candidate is a duplicate of CVE-2012-3414. Notes: All CVE users should reference CVE-2012-3414 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.\nPublished at: June 30, 2022 at 03:15PM\nView on website", "creation_timestamp": "2022-06-30T16:42:37.000000Z"}]}