CVE-2021-4296
CVE-2021-4296 affects the World Wide Web Consortium’s open-source validator, w3c Unicorn, specifically the function ValidatorNuMessage in the file ValidatorNuMessage.java . The root cause is the manipulation of the argument message , which leads to a cross-site scripting (XSS) vulnerability. The ...