tt-rss is vulnerable to mishandled code. The vulnerability exists due to an issue was discovered in Tiny Tiny RSS (aka tt-rss) before 2020-09-16. The cached_url feature mishandles JavaScript inside an SVG document.
CPE | Name | Operator | Version |
---|---|---|---|
tt-rss:sid | eq | 19.8+dfsg-1 | |
tt-rss:sid | eq | 19.8+dfsg-1 |