Critical: Red Hat Security Advisory: thunderbird security update

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

CVE-2011-3999

Cross-site scripting XSS vulnerability in the RSS/Atom feed-reader implementation in Iwate Portal Bar allows remote attackers to inject arbitrary web script or HTML via a crafted feed...

Cross site scripting

Cross-site scripting XSS vulnerability in the RSS/Atom feed-reader implementation in Iwate Portal Bar allows remote attackers to inject arbitrary web script or HTML via a crafted feed...

CVE-2011-3999

Cross-site scripting XSS vulnerability in the RSS/Atom feed-reader implementation in Iwate Portal Bar allows remote attackers to inject arbitrary web script or HTML via a crafted feed...

CVE-2011-3999

CVE-2011-3999 affects the Iwate Portal Bar RSS/Atom feed reader component. The vulnerability arises from improper HTML output processing based on feed information, enabling cross-site scripting (XSS) that can lead to arbitrary script execution in Internet Explorer when viewing crafted feeds. Publ...

JVN#99203127: Sage vulnerable to arbitrary script execution

Sage is an addon for Mozilla Firefox that adds an RSS/Atom feed reader. Sage is vulnerable to arbitrary script execution due to the improper processing during HTML page output based on feed information. Impact An arbitrary script embedded in an RSS/Atom feed may be executed on the user's Mozilla...

WordPress RSS Feed Reader Plugin 'rss_url' Parameter Cross Site Scripting Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

CVE-2011-0740

Cross-site scripting XSS vulnerability in magpie/scripts/magpieslashbox.php in RSS Feed Reader 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the rssurl parameter...

CVE-2011-0740

Cross-site scripting XSS vulnerability in magpie/scripts/magpieslashbox.php in RSS Feed Reader 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the rssurl parameter...

UBUNTU-CVE-2011-0740

Cross-site scripting XSS vulnerability in magpie/scripts/magpieslashbox.php in RSS Feed Reader 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the rssurl parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in magpie/scripts/magpieslashbox.php in RSS Feed Reader 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the rssurl parameter...

CVE-2011-0740

Removed by vendor...

CVE-2011-0740

CVE-2011-0740 is a Cross-site Scripting (XSS) vulnerability in the WordPress RSS Feed Reader Plugin 0.1, specifically in the magpie/scripts/magpie_slashbox.php file and its rss_url parameter. Attackers could inject arbitrary JavaScript/HTML in a victim’s browser. The issue is confirmed by multipl...

WordPress RSS Feed Reader For WordPress 0.1 Cross Site Scripting

------------------------------------------------------------------------ Software................WordPress RSS Feed Reader for WordPress 0.1 Vulnerability...........Reflected Cross-site Scripting Download................http://pleer.co.uk/wordpress/plugins/rss-feed-reader Release...

WordPress RSS Feed Reader Plugin 0.1 - Cross-Site Scripting Vulnerability

This RSS Feed Reader plugin's "rssurl" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...

WordPress Plugin RSS Feed Reader 0.1 - rss_url Cross-Site Scripting

WordPress Plugin RSS Feed Reader 0.1 - rssurl Cross-Site Scripting source: https://www.securityfocus.com/bid/45997/info The RSS Feed Reader WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...

WordPress Plugin RSS Feed Reader 0.1 - 'rss_url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45997/info The RSS Feed Reader WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1951-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 15, 2009 http://www.debian.org/security/faq -...

Fedora Update for liferea FEDORA-2007-1146

Check for the Version of liferea OpenVAS Vulnerability Test Fedora Update for liferea FEDORA-2007-1146 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for liferea FEDORA-2007-2853

Check for the Version of liferea OpenVAS Vulnerability Test Fedora Update for liferea FEDORA-2007-2853 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...