Vulnerabilities > Quokka Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-16	CVE-2020-18702	Cross-site Scripting vulnerability in Quokka Project Quokka 0.4.0 Cross Site Scripting (XSS) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the 'Username' parameter in the component 'quokka/admin/actions.py'. network low complexity quokka-project CWE-79	6.1
2021-08-16	CVE-2020-18703	XXE vulnerability in Quokka Project Quokka 0.4.0 XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/utils/atom.py'. network low complexity quokka-project CWE-611 critical	9.8
2021-08-16	CVE-2020-18705	XXE vulnerability in Quokka Project Quokka 0.4.0 XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/core/content/views.py'. network low complexity quokka-project CWE-611 critical	9.8

Vulnerabilities > Quokka Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Quokka Project"}]}