Lucene search
K

26 matches found

CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

Qwik 跨站脚本漏洞

Qwik is a micro-web framework developed by Qwik Dev. Versions of Qwik prior to 1.19.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from server-side rendering of virtual property serialization, which allowed remote attackers to inject arbitrary web scripts...

6.1CVSS5.8AI score0.00307EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2469

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00469EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/09 12:0 a.m.4 views

Qwik 安全漏洞

Qwik is a micro web framework open-sourced by Qwik Dev. A security vulnerability exists in Qwik versions prior to 1.13.0, which stems from an unhandled invalid qfunc error that could cause the service to crash...

9.2CVSS6.3AI score0.00304EPSS
Exploits0References1
CVE
CVE
added 2024/08/06 5:52 p.m.47 views

CVE-2024-41677

Summary: CVE-2024-41677 describes a mutation XSS (mXSS) vulnerability in Qwik due to improper HTML escaping during server-side rendering. The issue arises from how strings are escaped in render-ssr.ts, causing the final browser DOM to differ from the server render. Affected versions: up to, but n...

6.3CVSS6.1AI score0.00469EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/04/26 12:0 a.m.5 views

qwik 跨站请求伪造漏洞

qwik is a micro web framework. A cross-site request forgery vulnerability exists in qwik versions prior to 0.104.0. An attacker could exploit this vulnerability to perform a cross-site request forgery attack...

6.5CVSS5.7AI score0.00269EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/01/20 12:0 a.m.7 views

qwik 跨站脚本漏洞

qwik is a micro web framework. A cross-site scripting vulnerability exists in versions prior to qwik 0.1.0-beta5. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

6.1CVSS5.8AI score0.00458EPSS
Exploits0References3
Rows per page
Query Builder