CVE-2020-18703: Improper Restriction of XML External Entity Reference in Quokka

Severity: Critical

CVSS Score: 9.8

XML External Entities (XXE) in Quokka v0.4.0 allows remote attackers to execute arbitrary code via the component 'quokka/utils/atom.py'.