Author: JoostMeerten
Description:
By including a template inside a style directive, arbitrary HTML attributes can
be injected after the style. This allows, among other things, the use of
malicious JavaScript. See the URL for an example.
Version: 1.4.x
Severity: normal
URL: http://en.wikipedia.org/wiki/User:JRM/Sandbox