pypi›recommender-xblock›CVE-2018-208586.1 MEDIUMCross-site ScriptingRecommender is vulnerable to XSS.