CVE-2023-26119

Summary

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution (RCE) via XSTL, when browsing the attacker’s webpage.

Affected Software

VendorProductVersion RangeStatus
n/anet.sourceforge.htmlunit:htmlunit0 < 3.0.0affected

Weaknesses

  • CWE-94: Remote Code Execution (RCE)

ADP Enrichment

CVE Program Container

Additional References

References