SharpReader < 0.9.7.1 RSS Feed XSS (deprecated)
Medium Nessus Network Monitor Plugin ID 3748
SynopsisThe remote host is vulnerable to an HTML Injection attack.
DescriptionThe remote host is running SharpReader, a free RSS reader. SharpReader 0.9.7.0 and lower are reported to be vulnerable to flaws that would allow malicious RSS servers to execute malicious code via the SharpReader application.
SolutionUpgrade or patch according to vendor recommendations.