Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

QwikDev — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting QwikDev. AI-powered Chinese analysis, POCs, and references for each vulnerability.

QwikDev develops rapid application development frameworks primarily used for building web applications and APIs. Historically, the project has been associated with multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its nine recorded CVEs. Security researchers have frequently identified input validation weaknesses and insecure default configurations in QwikDev's components. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks for implementations lacking proper hardening and ongoing maintenance.

Top products by QwikDev: qwik
CVE IDTitleCVSSSeverityPublished
CVE-2026-32701 Qwik has array method pollution in FormData processing, allowing type confusion and DoS — qwikCWE-843 7.5 High2026-03-20
CVE-2026-27971 Qwik affected by unauthenticated RCE via server$ Deserialization — qwikCWE-502 9.8AICriticalAI2026-03-03
CVE-2026-25150 Prototype Pollution via FormData Processing in Qwik City — qwikCWE-1321 9.3 Critical2026-02-03
CVE-2026-25148 Qwik SSR XSS via Unsafe Virtual Node Serialization — qwikCWE-79 6.1AIMediumAI2026-02-03
CVE-2026-25151 Qwik City has a CSRF Protection Bypass via Content-Type Header Validation — qwikCWE-352 5.9 Medium2026-02-03
CVE-2026-25155 [qwik-city] CSRF protection middleware does not work properly for content type header with parameters (eg. multipart/form-data) — qwikCWE-352 5.9 Medium2026-02-03
CVE-2026-25149 Qwik City Open Redirect via fixTrailingSlash — qwikCWE-601 6.1AIMediumAI2026-02-03
CVE-2025-53620 Crashing any Qwik Server — qwikCWE-248 7.5AIHighAI2025-07-09
CVE-2024-41677 Cross-site Scripting (XSS) vulnerability due to improper HTML escaping in qwik — qwikCWE-79 6.3 Medium2024-08-06

This page lists every published CVE security advisory associated with QwikDev. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.