Reedy

1 exploit Active since Apr 2021
CVE-2020-36324 WRITEUP MEDIUM WRITEUP
Wikimedia analytics-quarry-web < 2020-12-15 - Reflected Cross-Site Scripting via Missing Content-Type Header
Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflected XSS because app.py does not explicitly set the application/json content type.
CVSS 6.1