MidnightBSD

Advisories for builder

CVE-2023-0410

Cross-site Scripting (XSS) - Generic in GitHub repository builderio/qwik prior to 0.1.0-beta5.

Products Affected

Vendor Product Version
builder qwik *
CVE-2023-1283

Code Injection in GitHub repository builderio/qwik prior to 0.21.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
builder qwik *
CVE-2023-2307

Cross-Site Request Forgery (CSRF) in GitHub repository builderio/qwik prior to 0.104.0.

Products Affected

Vendor Product Version
builder qwik *