Unrated severityNVD Advisory· Published Dec 21, 2005· Updated Jun 16, 2026
CVE-2005-4455
CVE-2005-4455
Description
cleanhtml.pl 1.129 in LiveJournal CVS before Dec 13 2005 allows remote attackers to inject scripting languages via the XSL namespace in XML, via vectors such as customview.cgi.
Affected products
2cpe:2.3:a:livejournal:livejournal:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:livejournal:livejournal:*:*:*:*:*:*:*:*
- (no CPE)range: <=1.129
Patches
Vulnerability mechanics
References
2- secunia.com/advisories/18157nvdPatchVendor Advisory
- cvs.livejournal.org/browse.cgi/livejournal/cgi-bin/cleanhtml.plnvd
News mentions
0No linked articles in our index yet.