EPSS
Percentile
44.1%
MapProxy is vulnerable to cross-site scripting (XSS) attacks. Attackers can use the format and srs parameters in the demo page to inject and execute arbitrary webscript.
format
srs
github.com/mapproxy/mapproxy/issues/322