CVE-2005-2608
CVE-2005-2608 concerns SafeHTML prior to version 1.3.5, where the library fails to properly filter script in UTF-7 and CSS comments, allowing remote XSS in applications that use SafeHTML. Affected component: SafeHTML (pre-1.3.5). Root cause: inadequate filtering of certain UTF-7 and CSS-comment c...