This module exploits a vulnerability in Mahara's RSS feed reader widget.

This vulnerability is present in Mahara 1.4.x prior to version 1.4.4, and 1.5.x prior to 1.5.3. It is likely that any version of Mahara prior to the affected versions which also includes the feed reader is also vulnerable, although this has not been confirmed. See CVE-2012-2239.