2 matches found
FeedDemon < 2.0.0.25 Atom Feed Active Script Code Execution
According to the Windows registry, the version of FeedDemon, an RSS reader for Windows, installed on the remote host is affected by a flaw due to improper sanitization of RSS feeds of Active Script code. An attacker can exploit this issue to inject arbitrary script into the affected application,...
CVE-2006-4710
CVE-2006-4710 affects NewsGator FeedDemon prior to 2.0.0.25. The vulnerability is a set of XSS flaws exploited via an Atom 1.0 feed, enabling an attacker to inject arbitrary script/HTML. The issue is demonstrated in test suites and is tied to improper handling of Atom feeds. Impact is the executi...