LiveJournal 1.0 and 1.1 Cross-Site Scripting (XSS) Vulnerability

CVE-2004-0310 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site scripting (XSS) vulnerability in LiveJournal 1.0 and 1.1 allows remote attackers to execute Javascript as other users via the stylesheet, which does not strip the semicolon or parentheses, as demonstrated using a background:url.

Learn more about our User Device Pen Test.