Scout is a Variant Call Format (VCF) visualization interface. The Pypi package scout-browser is vulnerable to path traversal due to send_file call in versions prior to 4.52.
scout-browser
send_file
"https://github.com/pypa/advisory-database/blob/main/vulns/scout-browser/PYSEC-2026-749.yaml"