Vulnerabilities > CVE-2005-0648 - Cross-Site Scripting vulnerability in Pixel-Apes Group Safehtml 1.3.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE

Summary

Multiple vulnerabilities in Pixel-Apes SafeHTML before 1.3.0 allow remote attackers to bypass cross-site scripting (XSS) protection via (1) "decimal HTML entities" or (2) "the \x00 symbol."

Vulnerable Configurations

Part Description Count
Application
Pixel-Apes_Group
1