CVE-2004-2246
CVE-2004-2246 involves a cross-site scripting (XSS) vulnerability in Goollery prior to 0.04b. The issue is exploitable via the conversation_id parameter to viewpic.php, allowing remote attackers to inject arbitrary HTML or script into a user’s browser session. The available connected sources conf...