65 matches found
CVE-2011-1157
CVE-2011-1157 affects Universal Feed Parser (python-feedparser) 5.x up to version 5.0.0, where feedparser.py is vulnerable to cross-site scripting (XSS) via malformed XML comments. An attacker could inject arbitrary web script or HTML through crafted XML comments sent to the parser. Version 5.0.1...
CVE-2009-5065
Cross-site scripting XSS vulnerability in feedparser.py in Universal Feed Parser aka feedparser or python-feedparser before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas...
CVE-2011-1156
feedparser.py in Universal Feed Parser aka feedparser or python-feedparser before 5.0.1 allows remote attackers to cause a denial of service application crash via a malformed DOCTYPE declaration...
python-feedparser 5.0 - feedparserfeedparser.py Cross-Site Scripting
python-feedparser 5.0 - feedparserfeedparser.py Cross-Site Scripting source: https://www.securityfocus.com/bid/47177/info python-feedparser is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...
python-feedparser 5.0 - '/feedparser/feedparser.py' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47177/info python-feedparser is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...