django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via jsreverseinline.
{ "affected_functions": [ "django_js_reverse.core.generate_js" ] }