Описание
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| feedparser | fixed | 5.0.1-1 | package | |
| feedparser | no-dsa | squeeze | package | |
| feedparser | no-dsa | lenny | package |
EPSS
Процентиль: 91%
0.07165
Низкий
Связанные уязвимости
ubuntu
больше 14 лет назад
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas.
nvd
больше 14 лет назад
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas.
EPSS
Процентиль: 91%
0.07165
Низкий