Django-unicorn Unicorn — known CVE vulnerabilities
Every CVE whose affected-product data names Django-unicorn Unicorn, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-42134 — CVSS 6.1 (medium): The Unicorn framework before 0.36.1 for Django allows XSS via a component. NOTE: this issue exists because of an incomplete fix for…
CVE-2026-31815 — CVSS 5.3 (medium): Unicorn adds modern reactive component functionality to your Django templates. Prior to 0.67.0, component state manipulation is possible in…