Vulnerabilities > Mark Pilgrim
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-05-21 | CVE-2012-2921 | Resource Management Errors vulnerability in Mark Pilgrim Feedparser Universal Feed Parser (aka feedparser or python-feedparser) before 5.1.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML ENTITY declaration in a non-ASCII encoded document. | 5.0 |
| 2011-04-11 | CVE-2011-1158 | Cross-Site Scripting vulnerability in Mark Pilgrim Feedparser 5.0 Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTML via an unexpected URI scheme, as demonstrated by a javascript: URI. | 4.3 |
| 2011-04-11 | CVE-2011-1157 | Cross-Site Scripting vulnerability in Mark Pilgrim Feedparser 5.0 Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTML via malformed XML comments. | 4.3 |
| 2011-04-11 | CVE-2011-1156 | Resource Management Errors vulnerability in Mark Pilgrim Feedparser feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1 allows remote attackers to cause a denial of service (application crash) via a malformed DOCTYPE declaration. | 5.0 |
| 2011-04-11 | CVE-2009-5065 | Cross-Site Scripting vulnerability in Mark Pilgrim Feedparser Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas. | 4.3 |