CVE-2009-5065
11.04.2011, 18:55
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas.
| Vendor | Product | Version |
|---|---|---|
| mark_pilgrim | feedparser | 𝑥 ≤ 4.1 |
| mark_pilgrim | feedparser | 3.0 |
| mark_pilgrim | feedparser | 3.0.1 |
| mark_pilgrim | feedparser | 3.1 |
| mark_pilgrim | feedparser | 3.2 |
| mark_pilgrim | feedparser | 3.3 |
| mark_pilgrim | feedparser | 4.0 |
| mark_pilgrim | feedparser | 4.0.1 |
| mark_pilgrim | feedparser | 4.0.2 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References