Browse all 5 CVE security advisories affecting Kozea. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kozea develops web applications and content management systems, primarily serving as a platform for building dynamic websites and applications. Historically, vulnerabilities in Kozea products have commonly included cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from improper input validation and access control issues. The project maintains a moderate security posture with five CVEs recorded to date, though no major security incidents have been widely documented. Kozea's codebase typically requires regular security updates to address newly discovered vulnerabilities, particularly in its templating and user input handling components.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-31899 | CairoSVG vulnerable to Exponential DoS via recursive <use> element amplification — CairoSVGCWE-674 | 7.5 | High | 2026-03-13 |
| CVE-2023-27586 | CairoSVG improperly processes SVG files loaded from external resources — CairoSVGCWE-20 | 9.9 | Critical | 2023-03-20 |
| CVE-2021-21236 | Regular Expression Denial of Service in CairoSVG — CairoSVGCWE-400 | 5.7 | Medium | 2021-01-06 |
This page lists every published CVE security advisory associated with Kozea. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.