[LOW] MODX allows cross-site scripting (XSS) via an SVG file

PKSA-xzqv-w6dn-tnz5 CVE-2025-28010 GHSA-hm54-fg2w-2g6j

Affected package: modx/revolution

Affected version: <=3.1.0

Reported by:
GitHub