Filtered by vendor Microsoft
Subscribe
Filtered by product Anti-cross Site Scripting Library
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2012-0007 | 1 Microsoft | 1 Anti-cross Site Scripting Library | 2024-02-28 | 4.3 MEDIUM | N/A |
The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 does not properly evaluate characters after the detection of a Cascading Style Sheets (CSS) escaped character, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML input, aka "AntiXSS Library Bypass Vulnerability." |