I appreciate the response. I download my own subtitle files, usually in .srt format, but saw that the Kodi example of the exploit occured with a user downloaded file, which worried me. I usually don't parse the code of the downloaded file except to see that the subtitles are in sync and appropriate.
I am pleased that you are attentive to the details discussed in the forum, and that there does not appear to be any vulnerability.
thanks again.
-rc-