0.016 Low
EPSS
Percentile
87.3%
net.sourceforge.htmlunit:htmlunit is vulnerable to Remote Code Execution (RCE). The vulnerability exists in the transform function in XSLTProcessor.java, which allows an attacker to upload and execute malicious code on the system.
transform
XSLTProcessor.java
github.com/HtmlUnit/htmlunit/commit/641325bbc84702dc9800ec7037aec061ce21956b
siebene.github.io/2022/12/30/HtmlUnit-RCE/