Vulnerabilities > CVE-2005-1638 - Unspecified vulnerability in Pixel-Apes Group Safehtml
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
pixel-apes-group
Summary
The _writeAttrs function in SafeHTML before 1.3.2 does not properly handle quotes in attribute values, which could allow remote attackers to exploit cross-site scripting (XSS) vulnerabilities in applications that rely on SafeHTML for protection.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |