Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
MapProxy version 1.10.3 and older is vulnerable to a Cross Site Scripting attack in the demo service resulting in possible information disclosure.
Advisories for Pypi/MapProxy package
2022