CVE-2004-0595: CVE-2004-0595

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-0595

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore null characters and facilitate the exploitation of cross-site scripting (XSS) vulnerabilities.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

PHP strip_tags（）函数绕过漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PHP 4.x到4.3.7版本，以及5.x到5.0.0RC3版本的strip_tags函数，当为允许标签输入限制时不能过滤在标签名称内空(\0)字符。Web浏览器如Internet Explorer和Safariweb可以处理危险标签，同时忽略空字符以及促进跨站脚本攻击(XSS)漏洞的利用。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-0595

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-0595

Please Login to view more intelligence information

http://www.securityfocus.com/bid/10724vdb-entryx_refsource_BID
http://www.debian.org/security/2004/dsa-531vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-669vendor-advisoryx_refsource_DEBIAN
http://marc.info/?l=bugtraq&m=109181600614477&w=2vendor-advisoryx_refsource_HP
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000847vendor-advisoryx_refsource_CONECTIVA
http://www.redhat.com/support/errata/RHSA-2004-395.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2004-392.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2005-816.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2004-405.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:068vendor-advisoryx_refsource_MANDRAKE
http://www.gentoo.org/security/en/glsa/glsa-200407-13.xmlvendor-advisoryx_refsource_GENTOO
http://www.novell.com/linux/security/advisories/2004_21_php4.htmlvendor-advisoryx_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/16692vdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=108982983426031&w=2mailing-listx_refsource_BUGTRAQ
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10619vdb-entrysignaturex_refsource_OVAL
http://marc.info/?l=bugtraq&m=109051444105182&w=2mailing-listx_refsource_BUGTRAQ
http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023909.htmlmailing-listx_refsource_FULLDISC
http://marc.info/?l=bugtraq&m=108981780109154&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2004-0595

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2004-0595

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2004-0595

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-0595

III. Intelligence Information for CVE-2004-0595

New Vulnerabilities

V. Comments for CVE-2004-0595

Leave a comment