Approved changes feed: RSS · Atom
cpe:2.3:a:w3:unicorn:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | W3 (11b4484f-87c5-5c4d-9d38-333439abc844) |
|---|---|
| Product | Unicorn (4dbaf71a-d93c-5464-b1b8-35504cde173d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/w3c/unicorn |
purl2cpe | 2026-06-01 10:17:39.839751 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-4296 |
vulnerable | 2026-06-08 05:38:09.131595 |
w3c Unicorn ValidatorNuMessage.java ValidatorNuMessage cross site scripting
LOW (3.5)
A vulnerability, which was classified as problematic, has been found in w3c Unicorn. This issue affects the function ValidatorNuMessage of the file src/org/w3c/unicorn/response/impl/ValidatorNuMessage.java. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The name of the patch is 51f75c31f7fc33859a9a571311c67ae4e95d9c68. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217019.
Published: 2022-12-29T08:52:08.121Z
Updated: 2024-08-03T17:23:10.275Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.