CVE-2006-4660

Multiple cross-site scripting XSS vulnerabilities in the RSS Feed module in AOL ICQ Toolbar 1.3 for Internet Explorer toolbaru.dll allow remote attackers to process arbitrary web script or HTML in the Feeds interface context via the 1 title and 2 description elements within an item element in an...

CVE-2006-4660

CVE-2006-4660 concerns multiple XSS vulnerabilities in the RSS Feed module of AOL ICQ Toolbar 1.3 for Internet Explorer. The weaknesses arise from the RSS feed item fields (title and description) being appended to HTML output without sanitization, enabling remote attackers to execute arbitrary sc...