← back
CVE-2004-0310

CVE-2004-0310

EPSS 1.3%
Cross-site scripting (XSS) vulnerability in LiveJournal 1.0 and 1.1 allows remote attackers to execute Javascript as other users via the stylesheet, which does not strip the semicolon or parentheses, as demonstrated using a background:url.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=107722627800820&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/15268http://www.securityfocus.com/bid/9700