VYPR
Unrated severityNVD Advisory· Published Aug 17, 2005· Updated Jun 16, 2026

CVE-2005-2608

CVE-2005-2608

Description

SafeHTML before 1.3.5 does not properly filter script in UTF-7 and CSS comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks in vulnerable applications that use SafeHTML.

Affected products

1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.