Cross-Site Scripting (XSS) vulnerability in the Django MarkdownX project, affecting version 4.0.2. An attacker could store a specially crafted JavaScript payload in the upload functionality due to lack of proper sanitisation of JavaScript elements.
"https://github.com/pypa/advisory-database/blob/main/vulns/django-markdownx/PYSEC-2026-1299.yaml"