Filtered by vendor W3c
Subscriptions
Filtered by product Css Validator
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-1781 | 1 W3c | 1 Css Validator | 2025-07-12 | N/A |
| There is a XXE in W3CSS Validator versions before cssval-20250226 that allows an attacker to use specially-crafted XML objects to coerce server-side request forgery (SSRF). This could be exploited to read arbitrary local files if an attacker has access to exception messages. | ||||
| CVE-2020-4070 | 1 W3c | 1 Css Validator | 2024-11-21 | 4.6 Medium |
| In CSS Validator less than or equal to commit 54d68a1, there is a cross-site scripting vulnerability in handling URIs. A user would have to click on a specifically crafted validator link to trigger it. This has been patched in commit e5c09a9. | ||||
Page 1 of 1.