📦

analytics-quarry-web

Vendor: wikimedia

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.24% Exploit Prob.

Latest CVE CVE-2020-36324 Apr 21

Security Vulnerability Index

Page 1 / 1

6.1 CVSS

CVE-2020-36324

Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflected XSS because app.py does not explicitly set the application/json content type.

EPSS: 0.24%

Severity: MEDIUM

Apr 21, 2021

Displaying 1 of 1 Total Entries

Total 1 Sections