Magento versions 1.9.2.2 and below suffer from an information disclosure vulnerability in their RSS feed.