Approved changes feed: RSS · Atom

cpe:2.3:a:w3c:unicorn:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorW3C (62e9f25e-7fc3-5790-8300-1ced91cdb7b8)
ProductUnicorn (961c1871-cc50-54b6-921e-2df31dd82e40)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-4296 vulnerable 2026-06-08 05:38:09.130757 w3c Unicorn ValidatorNuMessage.java ValidatorNuMessage cross site scripting
LOW (3.5)
A vulnerability, which was classified as problematic, has been found in w3c Unicorn. This issue affects the function ValidatorNuMessage of the file src/org/w3c/unicorn/response/impl/ValidatorNuMessage.java. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The name of the patch is 51f75c31f7fc33859a9a571311c67ae4e95d9c68. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217019.
Published: 2022-12-29T08:52:08.121Z
Updated: 2024-08-03T17:23:10.275Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.