Total vulnerabilities in the database
WebCore on Apple Mac OS X 10.3.9 and 10.4.10, as used in Safari, does not properly parse HTML comments in TITLE elements, which allows remote attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within an HTML comment.
| Software | From | Fixed in |
|---|---|---|
| apple / safari | - | - |
| apple / webcore | - | - |