Apache jUDDI prior to 2.0 allows malicious users to spoof entries in log files via vectors related to error logging of keys from uddiget.jsp.
apache juddi 0.9
apache juddi 2.0