Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Filtered by product Anti-cross Site Scripting Library
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-0007 1 Microsoft 1 Anti-cross Site Scripting Library 2024-02-04 4.3 MEDIUM N/A
The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 does not properly evaluate characters after the detection of a Cascading Style Sheets (CSS) escaped character, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML input, aka "AntiXSS Library Bypass Vulnerability."