Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
LinkedIn Oncall allows reflected XSS via /query because of mishandling of the "No results found for" message in the search bar.
Advisories for Pypi/Oncall package
2021