Wikimedia - Analytics-quarry-web CVE - CVE Search - CVE Details

Filtered by vendor Wikimedia Subscribe

Filtered by product Analytics-quarry-web

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-36324	1 Wikimedia	1 Analytics-quarry-web	2021-04-26	4.3 MEDIUM	6.1 MEDIUM
Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflected XSS because app.py does not explicitly set the application/json content type.

Vulnerabilities (CVE)