Wikimedia: >> Analytics-Quarry-Web Security Vulnerabilities
Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflected XSS because app.py does not explicitly set the application/json content type.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-04-21