CVE-2007-1454
ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a '<' character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b.List of 119,800 websites affected by CVE-2007-1454
The domain names are hidden due to the sensitivity of the data. Please click on the "Contact us" button above to get more information.
| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *****.***.tw |  Taiwan | *,*** | |
| **********.*****.de |  Germany | *,*** | |
| ***********.jp |  Japan | **,*** | |
| ****.info |  France | **,*** | |
| ******.com | Taiwan | **,*** | |
| *********.com |  United States | **,*** | |
| ******.com | Taiwan | **,*** | |
| ****.com | Taiwan | **,*** | |
| *****.com | Taiwan | **,*** | |
| ******.com | Taiwan | **,*** | |
| *****.com | Taiwan | **,*** | |
| *****.com | Taiwan | **,*** | |
| *****.com | Taiwan | **,*** | |
| *****.*****.**.kr |  Korea, South | **,*** | |
| ******.com | Taiwan | **,*** | |
| *****.com | Taiwan | **,*** | |
| **.*****.**********.com | United States | **,*** | |
| *****.*******.**.kr | **,*** | ||
| *******.com | Taiwan | **,*** | |
| ***.**.***.tw | Taiwan | **,*** |