quokka_project CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

quokka_project vulnerability overview

Aggregates CVE and security vulnerability intelligence across all quokka_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk xxe and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact session compromise, affecting vendor surface production workloads scenarios.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2020-18705 XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/core/content/views.py'. [email protected] 9.8 2.57% 2021-08-16 2024-11-21
CVE-2020-18703 XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/utils/atom.py'. [email protected] 9.8 2.57% 2021-08-16 2024-11-21
CVE-2020-18702 Cross Site Scripting (XSS) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the 'Username' parameter in the component 'quokka/admin/actions.py'. [email protected] 6.1 0.40% 2021-08-16 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence