EUVD-2006-4747

Malware in sbrugna...

Product Feed PRO for WooCommerce by AdTribes – WooCommerce Product Feeds for Google, Facebook/Meta, Bing, & More < 13.2.6 - Reflected Cross-Site Scripting

Description The Product Feed PRO for WooCommerce by AdTribes – WooCommerce Product Feeds for Google, Facebook/Meta, Bing, & More plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including, 13.2.5 due to insufficient input sanitization and output...

DokuWiki 跨站脚本漏洞

DokuWiki is an easy-to-use and versatile open source Wiki software. A security vulnerability exists in versions of DokuWiki prior to 2023-04-04a, which originated from allowing XSS via RSS feeds...

SUSE CVE-2018-5172

The Live Bookmarks page and the PDF viewer can run injected script content if a user pastes script from the clipboard into them while viewing RSS feeds or PDF files. This could allow a malicious site to socially engineer a user to copy and paste malicious script content that could then run with t...

UBUNTU-CVE-2022-39276

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Usage of RSS feeds or an external calendar in planning is subject to SSRF exploit. In case a remote...

[SECURITY] Fedora 31 Update: python-feedgen-0.9.0-1.fc31

Feedgenerator This module can be used to generate web feeds in both ATOM and RSS format. It has support for extensions. Included is for example an exten sion to produce Podcasts...

Fedora: Security Advisory for python-feedgen (FEDORA-2020-8493201e90)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2016-4045

An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. Script code can be embedded to RSS feeds using a URL notation. In case a user clicks the corresponding link at the RSS reader of App Suite, code gets executed at the context of the user. Malicious script code can be executed...

[Full-disclosure] [NETRAGARD SECURITY ADVISORY] [&lt; Safari 3.2.3 Arbitrary Code Execution + PoC ][NETRAGARD-20090622]

NETRAGARD ADVISORY http://www.netragard.com "The Specialist in Anti- Hacking" Advisory Summary --------------------------------------------------------------------------------------------------- Advisory Author : Adriel T. Desautels Researcher : Kevin Finisterre Advisory ID : NETRAGARD-20090622...