Lucene search
China National Vulnerability DatabaseCNVD-2021-94926HistoryAug 17, 2021 - 12:00 a.m.
Quokka Cross-Site Scripting Vulnerability
2021-08-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
quokka
content management
python
framework
cross-site scripting
vulnerability
arbitrary code
username parameter
component
EPSS
0.001
Percentile
48.6%
Quokka is a content management framework written in Python. version 0.4.0 of Quokka is vulnerable to a cross-site scripting vulnerability. An attacker can exploit the vulnerability to execute arbitrary code via the Username parameter in the quokka/admin/actions.py component.
Related
cvelist
cvelist
CVE-2020-18702
2021-08-16 17:55:35
cve
cve
CVE-2020-18702
2021-08-16 18:15:07
osv
osv
CVE-2020-18702
2021-08-16 18:15:07
PYSEC-2021-143
2021-08-16 18:15:00
Cross Site Scripting (XSS) in Quokka
2021-08-30 16:23:26
nvd
nvd
CVE-2020-18702
2021-08-16 18:15:07
prion
prion
Cross site scripting
2021-08-16 18:15:00
github
github
Cross Site Scripting (XSS) in Quokka
2021-08-30 16:23:26