Homepage

@builder.io/qwik-city@1.7.0-dev20240711122353 vulnerabilities

The meta-framework for Qwik.

  • latest version

    1.16.0

  • latest non vulnerable version

    1.16.0

  • first published

    3 years ago

  • latest version published

    14 days ago

  • licenses detected

  • View qwik-city package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the @builder.io/qwik-city package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • C
    Uncaught Exception

    @builder.io/qwik-city is a The meta-framework for Qwik.

    Affected versions of this package are vulnerable to Uncaught Exception via the QRL execution process when an invalid qfunc is sent and the server fails to handle the resulting error. An attacker can cause the server to crash and terminate unexpectedly by sending a specially crafted request.

    How to fix Uncaught Exception?

    Upgrade @builder.io/qwik-city to version 1.13.0 or higher.

    <1.13.0
    Go back to all versions of this package