[MEDIUM] svg-sanitizer Bypasses Attribute Sanitization

PKSA-4g5g-4rkv-myqs CVE-2025-55166 GHSA-22wq-q86m-83fh

Affected version: <0.22.0

Reported by:
GitHub

[MEDIUM] A cross-site scripting vulnerability

PKSA-wsdr-wpj7-1wz2 CVE-2022-23638 GHSA-fqx8-v33p-4qcc

Affected version: <0.15.0

Reported by:
FriendsOfPHP/security-advisories, GitHub