Approved changes feed: RSS · Atom

cpe:2.3:a:w3c:jigsaw:2.2.1:*:*:*:*:*:*:*

part: a version: 2.2.1 update: *

VendorW3C (62e9f25e-7fc3-5790-8300-1ced91cdb7b8)
ProductJigsaw (261a9b1c-1d73-55e5-8938-7b0633498080)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/w3c/css-validator purl2cpe 2026-06-01 10:11:50.050189

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2004-2274 vulnerable 2026-06-08 04:48:09.059574 Details available
Unknown vulnerability in Jigsaw before 2.2.4 has unknown impact and attack vectors, possibly related to the parsing of the URI.
Published: 2005-07-19T04:00:00.000Z
Updated: 2024-08-08T01:22:13.219Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2002-1052 vulnerable 2026-06-08 04:46:22.818614 Details available
Jigsaw 2.2.1 on Windows systems allows remote attackers to use MS-DOS device names in HTTP requests to (1) cause a denial of service using the "con" device, or (2) obtain the physical path of the server using two requests to the "aux" device.
Published: 2002-08-31T04:00:00.000Z
Updated: 2024-08-08T03:12:17.079Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.