HtmlUnit is a GUI-less browser for Java programs. HtmlUnit is vulnerable to Remote Code Execution (RCE) via XSTL, when browsing the attacker’s webpage. This vulnerability has been patched in version 3.9.0
Name | Vendor | Start Version | End Version |
---|---|---|---|
Htmlunit | Htmlunit | * | 3.9.0 (excluding) |