Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Quokka Project Subscribe
Filtered by product Quokka
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-18705 1 Quokka Project 1 Quokka 2021-08-23 7.5 HIGH 9.8 CRITICAL
XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/core/content/views.py'.
CVE-2020-18702 1 Quokka Project 1 Quokka 2021-08-23 4.3 MEDIUM 6.1 MEDIUM
Cross Site Scripting (XSS) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the 'Username' parameter in the component 'quokka/admin/actions.py'.
CVE-2020-18703 1 Quokka Project 1 Quokka 2021-08-23 7.5 HIGH 9.8 CRITICAL
XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/utils/atom.py'.