VYPR
Unrated severityNVD Advisory· Published Mar 14, 2005· Updated Jun 16, 2026

CVE-2005-0509

CVE-2005-0509

Description

Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, including ">" and "<".

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:microsoft:.net_framework:1.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:microsoft:.net_framework:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:.net_framework:1.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:.net_framework:1.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:.net_framework:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:.net_framework:1.1:sp1:*:*:*:*:*:*
  • cpe:2.3:a:mono:mono:1.0.5:*:*:*:*:*:*:*
  • Mono/ASP.NETllm-create
    Range: =1.0.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.