This vulnerability results from a reflected unsanitized input that can be crafted into an attack by a malicious user by manipulating the 'mode' parameter of the xml/media-rss.php script.
Version 1.5.1 is verified as vulnerable, older versions are probably vulnerable too but they were not tested at this time.
Version 1.5.1 is verified as vulnerable, older versions are probably vulnerable too but they were not tested at this time.
CVE Link
Exploit Type - Old
Exploits/Cross Site Scripting (XSS)/Known Vulnerabilities
Exploit Type
Product Name