2 matches found
CVE-2005-0649
Pixel-Apes SafeHTML before 1.2.1 allows remote attackers to bypass cross-site scripting XSS protection via "hexadecimal HTML entities."...
CVE-2005-0649
Pixel-Apes SafeHTML prior to version 1.2.1 is vulnerable to bypassing XSS protection via hexadecimal HTML entities. Affected: SafeHTML component (pre-1.2.1). Root cause: input handling allows bypass of HTML entity encoding to defeat XSS protections. Impact: potential remote XSS. Exploitation deta...