2 matches found
CVE-2005-3955
CVE-2005-3955 affects MagpieRSS 7.1 as used in blogBuddiesv 0.3 and Jaws 0.6.2, allowing remote attackers to inject arbitrary scripts via (1) the url parameter to magpie_debug.php and (2) the rss_url parameter to magpie_slashbox.php and simple_smarty.php. The documented impact is cross-site scrip...
CVE-2005-3955
Multiple cross-site scripting XSS vulnerabilities in MagpieRSS 7.1, as used in a blogBuddiesv 0.3, b Jaws 0.6.2, and possibly other products, allow remote attackers to inject arbitrary web script or HTML via the 1 url parameter to a magpiedebug.php and 2 rssurl parameter to b magpieslashbox.php a...