0.001 Low
EPSS
Percentile
46.8%
The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag.
github.com/bcit-ci/CodeIgniter/issues/4020
nealpoole.com/blog/2013/07/codeigniter-21-xss-clean-filter-bypass/
www.codeigniter.com/userguide2/changelog.html