[MEDIUM] Cross-site scripting (XSS) vulnerability in the system log of the back end

PKSA-ftwh-331g-zg9s CVE-2018-10125 GHSA-pj4j-287j-f742

Affected package: contao/core

Affected version: >=3.0.0,<3.5.35

Reported by:
FriendsOfPHP/security-advisories, GitHub