[LOW] Contao allows admin an account to upload SVG file containing malicious JavaScript

PKSA-64ps-f717-jtgs CVE-2024-45965 GHSA-mrw8-5368-phm3

Affected package: contao/contao

Affected version: <=5.4.1

Reported by:
GitHub