Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2021-42134

Disclosure Date: October 11, 2021 (last updated February 23, 2025)
The Unicorn framework before 0.36.1 for Django allows XSS via a component. NOTE: this issue exists because of an incomplete fix for CVE-2021-42053.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-42053

Disclosure Date: October 07, 2021 (last updated February 23, 2025)
The Unicorn framework through 0.35.3 for Django allows XSS via component.name.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0