Fedora 13 : python-feedparser-5.0.1-1.fc13 (2011-4911)

Current release: 5.0.1 - February 20, 2011 - Fix issue 91 invalid text in XML declaration causes sanitizer to crash - Fix issue 254 sanitization can be bypassed by malformed XML comments - Fix issue 255 sanitizer doesn't strip unsafe URI schemes Previous release: 5.0 - January 25, 2011 - Improved...

Fedora 14 : python-feedparser-5.0.1-1.fc14 (2011-4894)

Current release: 5.0.1 - February 20, 2011 - Fix issue 91 invalid text in XML declaration causes sanitizer to crash - Fix issue 254 sanitization can be bypassed by malformed XML comments - Fix issue 255 sanitizer doesn't strip unsafe URI schemes Previous release: 5.0 - January 25, 2011 - Improved...

Fedora 15 : python-feedparser-5.0.1-1.fc15 (2011-4988)

Current release: 5.0.1 - February 20, 2011 - Fix issue 91 invalid text in XML declaration causes sanitizer to crash - Fix issue 254 sanitization can be bypassed by malformed XML comments - Fix issue 255 sanitizer doesn't strip unsafe URI schemes Previous release: 5.0 - January 25, 2011 - Improved...

CVE-2011-1156

feedparser.py in Universal Feed Parser aka feedparser or python-feedparser before 5.0.1 allows remote attackers to cause a denial of service application crash via a malformed DOCTYPE declaration...

CVE-2011-1158

The CVE-2011-1158 issue affects the Universal Feed Parser (python-feedparser) in the feedparser.py component for 5.x until 5.0.1. The vulnerability is a cross-site scripting (XSS) flaw that enables remote attackers to inject arbitrary web script or HTML via an unexpected URI scheme (demonstrated ...

CVE-2011-1156

CVE-2011-1156 concerns the Python feedparser (Universal Feed Parser) project. The vulnerability exists in feedparser.py (python-feedparser) prior to version 5.0.1, where a malformed DOCTYPE declaration can be exploited remotely to cause an application crash, i.e., a denial of service. The initial...

CVE-2011-1157

CVE-2011-1157 affects Universal Feed Parser (python-feedparser) 5.x up to version 5.0.0, where feedparser.py is vulnerable to cross-site scripting (XSS) via malformed XML comments. An attacker could inject arbitrary web script or HTML through crafted XML comments sent to the parser. Version 5.0.1...

CVE-2011-1156

feedparser.py in Universal Feed Parser aka feedparser or python-feedparser before 5.0.1 allows remote attackers to cause a denial of service application crash via a malformed DOCTYPE declaration...

python-feedparser 5.0 - feedparserfeedparser.py Cross-Site Scripting

python-feedparser 5.0 - feedparserfeedparser.py Cross-Site Scripting source: https://www.securityfocus.com/bid/47177/info python-feedparser is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

python-feedparser 5.0 - '/feedparser/feedparser.py' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47177/info python-feedparser is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...