CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-3079

Malicious code in bioql PyPI...

9.8CVSS8.5AI score0.05143EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2023-1944

Malicious code in bioql PyPI...

9.8CVSS8.6AI score0.04027EPSS

Exploits1References6

RedhatCVE•added 2025/05/23 5:38 a.m.•2 views

CVE-2023-26119

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

9.8CVSS7.4AI score0.04027EPSS

Exploits1References1

Github Security Blog•added 2023/12/04 11:13 p.m.•37 views

HtmlUnit vulnerable to Remote Code Execution (RCE) via XSTL

Summary HtmlUnit 3.8.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage Details Vulnerability code location: org.htmlunit.activex.javascript.msxml.XSLProcessortransformorg.htmlunit.activex.javascript.msxml.XMLDOMNode The reason for the vulnerability is th...

9.8CVSS8AI score0.05143EPSS

Exploits1References4Affected Software1

NVD•added 2023/12/04 5:15 a.m.•20 views

CVE-2023-49093

HtmlUnit is a GUI-less browser for Java programs. HtmlUnit is vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage. This vulnerability has been patched in version 3.9.0...

9.8CVSS0.05143EPSS

Exploits1References2

Prion•added 2023/12/04 5:15 a.m.•22 views

Remote code execution

6.8CVSS7.6AI score0.05143EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2023/12/04 4:47 a.m.•18 views

CVE-2023-49093 HtmlUnit vulnerable to Remote Code Execution (RCE) via XSTL

9.8CVSS7.3AI score0.05143EPSS

Exploits1References2

Debian CVE•added 2023/12/04 4:47 a.m.•27 views

CVE-2023-49093

Removed by vendor...

9.8CVSS8.7AI score0.05143EPSS

Exploits1

OSV•added 2023/12/04 4:47 a.m.•17 views

CVE-2023-49093 HtmlUnit vulnerable to Remote Code Execution (RCE) via XSTL

9.8CVSS8.5AI score0.05143EPSS

Exploits1References4

Cvelist•added 2023/12/04 4:47 a.m.•15 views

CVE-2023-49093 HtmlUnit vulnerable to Remote Code Execution (RCE) via XSTL

9.8CVSS9.9AI score0.05143EPSS

Exploits1References2

CVE•added 2023/12/04 4:47 a.m.•140 views

CVE-2023-49093

HtmlUnit (Java GUI-less browser) is affected by CVE-2023-49093 where an RCE can be triggered via an XSLT processing flaw when loading attacker-controlled content. The issue stems from XSLT processing not enforcing secure processing, enabling remote code execution on a vulnerable system. A patch i...

9.8CVSS9.3AI score0.05143EPSS

Exploits1References2Affected Software1

UbuntuCve•added 2023/12/04 12:0 a.m.•21 views

CVE-2023-49093

9.8CVSS7.1AI score0.05143EPSS

Exploits1References4

OSV•added 2023/07/06 7:24 p.m.•28 views

GHSA-3XRR-7M6P-P7XH HtmlUnit Code Injection vulnerability

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

9.8CVSS9.6AI score0.04027EPSS

Exploits1References5

Github Security Blog•added 2023/07/06 7:24 p.m.•33 views

HtmlUnit Code Injection vulnerability

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

9.8CVSS7.5AI score0.04027EPSS

Exploits1References5Affected Software1

IBM Security Bulletins•added 2023/06/30 6:36 a.m.•35 views

Security Bulletin: Vulnerability for remote code execution fixed in IBM Security Verify Governance [CVE-2023-26119]

Summary The following security vulnerability for HtmlUnit has been addressed in IBM Security Verify Governance. CVE-2023-26119 Vulnerability Details CVEID:CVE-2023-26119 DESCRIPTION: HtmlUnit could allow a remote attacker to execute arbitrary code on the system, caused by an XSTL code injection...

9.8CVSS10AI score0.04027EPSS

Exploits1Affected Software1

NVD•added 2023/04/03 5:15 a.m.•19 views

CVE-2023-26119

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

9.8CVSS9.8AI score0.04027EPSS

Exploits1References3

OSV•added 2023/04/03 5:15 a.m.•20 views

CVE-2023-26119

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

9.8CVSS10AI score

Exploits0References3

Prion•added 2023/04/03 5:15 a.m.•20 views

Remote code execution

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

7.5CVSS9.7AI score0.04027EPSS

Exploits1References3Affected Software1

CVE•added 2023/04/03 5:0 a.m.•110 views

CVE-2023-26119

CVE-2023-26119 affects net.sourceforge.htmlunit:htmlunit. Versions 0 through 2.x (i.e., before 3.0.0) are vulnerable to remote code execution via an XSTL/code injection flaw when loading the attacker’s page. The issue enables an attacker to run arbitrary code on the affected host. Remote exploita...

9.8CVSS9.6AI score0.04027EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/04/03 5:0 a.m.•23 views

CVE-2023-26119

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

9.8CVSS10AI score0.04027EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by