CVE-2005-4454
CVE-2005-4454 affects LiveJournal’s cleanhtml.pl 1.129 prior to Dec 7, 2005. The issue arises when the cleancss option is enabled: a backslash in a javascript: URL within a style property can bypass the javascript check and be rendered as script in browsers that permit scripting in styles, enabli...