Christian Stocker

#30463de 53,633
8.6CVSS total
Vulnerabilidades · 2
Média
2
PT-2005-1691
4.3
2005-03-04
Pixel Apes · Pixel-Apes Safehtml · CVE-2005-0648
**Name of the Vulnerable Software and Affected Versions** Pixel-Apes SafeHTML versions prior to 1.3.0 **Description** The issue allows remote attackers to bypass cross-site scripting (XSS) protection. This can be achieved via two methods: (1) using decimal HTML entities or (2) utilizing the x00 symbol. **Recommendations** For versions prior to 1.3.0, update to version 1.3.0 or later to resolve the issue.
PT-2005-1692
4.3
2005-03-04
Pixel Apes · Pixel-Apes Safehtml · CVE-2005-0649
**Name of the Vulnerable Software and Affected Versions** Pixel-Apes SafeHTML versions prior to 1.2.1 **Description** The issue allows remote attackers to bypass cross-site scripting protection by utilizing hexadecimal HTML entities. **Recommendations** For versions prior to 1.2.1, update to version 1.2.1 or later to resolve the issue.