composer›damienharper/auditor-bundle›CVE-2024-455928.2 HIGHauditor-bundle vulnerable to Cross-site Scripting because name of entity does not get escapedUnescaped entity property enables Javascript injection.