oss-sec mailing list archives

Feed2JS v1.7 XSS Web Security Vulnerabilities - CVE Request

From: Jing Wang <justqdjing () gmail com>
Date: Fri, 22 May 2015 22:28:19 +0800

Hello,

Could you assign a CVE reference ID for the following vulnerability?
Thank you very much.


http://seclists.org/fulldisclosure/2015/May/35
http://www.osvdb.org/show/osvdb/121852
http://packetstormsecurity.com/files/131840/Feed2JS-1.7-Cross-Site-Scripting.html
http://tetraph.com/security/xss-vulnerability/feed2js-v1-7-xss/
http://permalink.gmane.org/gmane.comp.security.fulldisclosure/1958
http://cxsecurity.com/issue/WLB-2015050068
http://www.intelligentexploit.com/view-details.html?id=21315




========

Exploit Title:
Feed2JS v1.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

Product:
Feed2JS

Vendor:
feed2js.org

Vendor Link:
https://feed2js.org/index.php?s=download

Vulnerable Versions:
v1.7

Tested Versions:
v1.7

========




Best Regards,
Wang Jing,


Division of Mathematical Sciences (MAS),
School of Physical and Mathematical Sciences (SPMS),
Nanyang Technological University (NTU),
Singapore.
http://www.tetraph.com/wangjing/
https://twitter.com/justqdjing

Current thread:

Feed2JS v1.7 XSS Web Security Vulnerabilities - CVE Request Jing Wang (May 22)