cleanhtml.pl 1.129 in LiveJournal CVS before Dec 13 2005 allows remote malicious users to inject scripting languages via the XSL namespace in XML, via vectors such as customview.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
livejournal livejournal |