In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade weasyprint to version 69.0 or higher.
weasyprint is a The Awesome Document Factory
Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in the processing of presentational hints when unescaped attribute values are embedded into CSS. An attacker can inject arbitrary CSS declarations by supplying crafted attribute values, potentially causing server-side requests or altering the rendered output. This is only exploitable if presentational hints are enabled.