Security Advisory
CVE-2020-18702
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Cross Site Scripting (XSS) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the Username parameter in the component quokka/admin/actions.py.