Vulnerabilities > Htmlunit

DATE CVE VULNERABILITY TITLE RISK
2023-12-04 CVE-2023-49093 Unspecified vulnerability in Htmlunit
HtmlUnit is a GUI-less browser for Java programs.
network
low complexity
htmlunit
8.8
2023-05-25 CVE-2023-2798 Out-of-bounds Write vulnerability in Htmlunit
Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks (DoS).
network
low complexity
htmlunit CWE-787
7.5
2023-04-03 CVE-2023-26119 Unspecified vulnerability in Htmlunit
Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution (RCE) via XSTL, when browsing the attacker’s webpage.
network
low complexity
htmlunit
critical
9.8
2022-04-25 CVE-2022-29546 Unspecified vulnerability in Htmlunit
HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of service vulnerability.
network
low complexity
htmlunit
7.5
2022-04-21 CVE-2022-28366 Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction (PI) input that causes excessive heap memory consumption. 7.5
2020-02-11 CVE-2020-5529 Improper Initialization vulnerability in multiple products
HtmlUnit prior to 2.37.0 contains code execution vulnerabilities.
network
high complexity
htmlunit debian canonical apache CWE-665
8.1