Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x prior to 5.0.1 allows remote malicious users to inject arbitrary web script or HTML via malformed XML comments.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mark pilgrim feedparser 5.0 |