Lucene search
GoogleOSV:PYSEC-2021-144HistoryAug 16, 2021 - 6:15 p.m.
PYSEC-2021-144
2021-08-1618:15:00
Google
osv.dev
8
0.006 Low
EPSS
Percentile
79.1%
XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component ‘quokka/utils/atom.py’.
| CPE | Name | Operator | Version |
|---|---|---|---|
| quokka | eq | 0.3.7.dev1 | |
| quokka | eq | 0.4.0 | |
| quokka | eq | 0.3.3 | |
| quokka | eq | 0.4.1.dev22 | |
| quokka | eq | 0.4.1.dev6 | |
| quokka | eq | 0.3.0 | |
| quokka | eq | 0.1.0 | |
| quokka | eq | 0.3.6.dev1 | |
| quokka | eq | 0.3.4 | |
| quokka | eq | 0.0.1.dev84 |
Related
osv
osv
Improper Restriction of XML External Entity Reference in Quokka
2021-08-30 16:23:34
CVE-2020-18703
2021-08-16 18:15:07
prion
prion
Xxe
2021-08-16 18:15:00
cvelist
cvelist
CVE-2020-18703
2021-08-16 17:55:55
github
github
Improper Restriction of XML External Entity Reference in Quokka
2021-08-30 16:23:34
cnvd
cnvd
Quokka XML External Entity Injection Vulnerability (CNVD-2021-94927)
2021-08-17 00:00:00
cve
cve
CVE-2020-18703
2021-08-16 18:15:07
nvd
nvd
CVE-2020-18703
2021-08-16 18:15:07