Medium severity6.1NVD Advisory· Published Feb 21, 2018· Updated Jun 16, 2026
CVE-2013-4891
CVE-2013-4891
Description
The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <2.1.4
Patches
Vulnerability mechanics
References
3- nealpoole.com/blog/2013/07/codeigniter-21-xss-clean-filter-bypass/nvdExploitThird Party Advisory
- github.com/bcit-ci/CodeIgniter/issues/4020nvdIssue TrackingThird Party Advisory
- www.codeigniter.com/userguide2/changelog.htmlnvdRelease Notes
News mentions
0No linked articles in our index yet.