Microsoft ASP.NET 2.0 does not prevent setting the InnerHtml property on a control that inherits from HtmlContainerControl, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via vectors related to an attribute.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft asp.net 2.0 |