CVE-2021-42053

The Unicorn framework through 0.35.3 for Django allows XSS via component.name...

CVE-2021-39194

kaml is an open source implementation of the YAML format with support for kotlinx.serialization. In affected versions attackers that could provide arbitrary YAML input to an application that uses kaml could cause the application to endlessly loop while parsing the input. This could result in...

django-unicorn 0.35.3 - Stored Cross-Site Scripting Vulnerability

Exploit Title: django-unicorn 0.35.3 - Stored Cross-Site Scripting XSS Exploit Author: Raven Security Associates, Inc. ravensecurity.net Software Link: https://pypi.org/project/django-unicorn/ Version: = 0.35.3 CVE: CVE-2021-42053 django-unicorn = 0.35.3 suffers from a stored XSS vulnerability by...

PYSEC-2021-357

The Unicorn framework through 0.35.3 for Django allows XSS via component.name...

charleskorn kaml 安全漏洞

charleskorn kaml is an open source implementation of the YAML format that supports kotlinx.serialization. A security vulnerability exists in versions of kaml prior to 0.35.3 that allows an attacker to provide arbitrary YAML input to an application using kaml An attacker could cause the applicatio...