Multiple unspecified vulnerabilities in Roundup before 1.4.4 have unknown impact and attack vectors, some of which may be related to cross-site scripting (XSS).
"https://github.com/pypa/advisory-database/blob/main/vulns/roundup/PYSEC-2008-9.yaml"