CVE-2020-36324
Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflected XSS because app.py does not explicitly set the application/json content type.
Learn more about our Web App Pen Testing.
Learn more about our Web App Pen Testing.