pyspider through 0.3.10 allows /update XSS. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
"https://github.com/pypa/advisory-database/blob/main/vulns/pyspider/PYSEC-2026-1843.yaml"